Policy Compliance Library Updates, May 2015

Qualys’ library of built-in policies makes it easy to comply with commonly adhered to security standards and regulations. Qualys provides a wide range of policies, including many that have been certified by CIS as well as ones based on security guidelines from vendors such as Microsoft and VMware.  We are also expanding our coverage of mandate-based policies with out of the box coverage of industry and government regulations such as PCI and HIPAA.

In order to keep up with the latest changes in security control requirements and new technologies, Qualys publishes new content to the Policy Library monthly.

New and Updated CIS Benchmarks

This month’s updates include: Red Hat Enterprise Linux 6, HP-UX 11i v3, Windows 8.1, and Windows Server 2012 R2

• Updated CIS Benchmark for Red Hat Enterprise Linux 6, v1.3.0 [Scored, Level 1 and Level 2]
• CIS Benchmark for HP-UX 11iv3, v1.5.0 [Scored]
• CIS Benchmark for CIS Benchmark for Microsoft Windows 8.1, v1.1.0, [Scored, Level 1 and Level 1 + BitLocker]
• CIS Benchmark for CIS Benchmark for Microsoft Windows 8.1, v1.1.0, [Scored, Level 1]
• CIS Benchmark for Microsoft Windows Server 2012 R2, v1.1.0, [Scored, Domain Controller]
• CIS Benchmark for Microsoft Windows Server 2012 R2, v1.1.0, [Scored, Member Server]

CIS Benchmarks are developed through consensus, providing an industry recognized collection of best practice controls.  Qualys is committed to broad coverage of the CIS Benchmarks and regularly releases certified policies as well as contributing to the development of new benchmarks through the CIS Community.

Qualys' Certification Page at CIS has been updated:  https://benchmarks.cisecurity.org/membership/certified/qualys

If you have any questions please contact your TAM or Technical Support.