AWS CIS Benchmarks provides prescriptive guidance to configure security options for a subset of AWS with an emphasis on foundational, testable, and architecture agnostic settings. It is intended for system and application administrators, security specialists, auditors, help desk, platform deployment, and/or DevOps personnel who plan to develop, deploy, assess, or secure solutions in AWS.
Here are the high-level domains, which are part of AWS CIS Benchmarks:
- Identity and access management
Currently, there is a tool named prowler (https://github.com/Alfresco/prowler) based on AWS-CLI commands for AWS account security assessment and hardening.
This tools follows the ...