Policy Compliance Library Updates, January 2022

Pronamika Abraham

Qualys’ library of built-in policies makes it easy to comply with the security standards and regulations most commonly used and adhered to. Qualys provides a wide range of policies, including many that have been certified by CIS security guidelines from OS and application vendors, and other industry best practices.

To keep up with the latest changes in security control requirements and new technologies, Qualys publishes new content to the Policy Library twice every month. The first update contains new policies and is released in the first week of each month, followed by the second update by end of the month that includes bug fixes and updated policies.

The January release includes four CIS Benchmark policies, two industry and best practice policies, and provides updates to several existing policies in the Qualys Content Library.

Qualys’ Certification Page at CIS has been updated.

New CIS Benchmark Policies

CIS Benchmarks are developed through consensus, providing an industry-recognized collection of best practice controls. Qualys is committed to providing broad coverage of the CIS Benchmarks with regular releases of CIS certified policies in Policy Compliance and contributes to the development of new benchmarks through the CIS Community.

This release contains the following new CIS Benchmark policies:

  • CIS Benchmark for Amazon Linux 2 v2.0.0
  • CIS Benchmark for AlmaLinux OS 8 v1.0.0
  • CIS Benchmark for MongoDB 3.6 v1.1.0
  • CIS Benchmark for PostgreSQL 13 v1.0.0

New Industry and Best Practice Policies

  • Qualys Security Configuration and Compliance Policy Based on NSA and CISA Hardening Guidance for Kubernetes
  • Qualys Security Configuration and Compliance Policy for Azure Microsoft SQL Server 2014

Updated Library Policies

The following updated policies have been updated in this month’s package:

  • Policy update to add FreeBSD 13.x technology support
    • Qualys Security Configuration and Compliance Policy for FreeBSD
  • Policy update to add Safari 13.x and 14.x technology support
    • CIS Benchmark for MacOS Safari, v2.0.0
  • Policy update to include missing controls
    • CIS Benchmark for Apple Mac OS 10.15, v1.1.0

Reviewed Policies

The following policies have been reviewed and re-released in this month’s package:

  • CIS Benchmark for IBM AIX 6.1, v1.1.0

Coming Next Month

The following policies and updates are currently planned for release to the policy library next month:

New Coverage:

  • CIS Benchmark for Amazon Elastic Kubernetes Service (EKS) v1.0.1
  • CIS Benchmark for Amazon Linux 2 STIG v2.0.0
  • CIS Benchmark for Apple macOS 11.0 Big Sur v2.0.0
  • CIS Benchmark for Apple macOS 12.0 Monterey v1.0.0
  • CIS Benchmark for Cisco Firewall 8.x v4.2.0
  • CIS Benchmark for F5 v1.0.0
  • CIS Benchmark for Google Chrome v2.1.0
  • CIS Benchmark for Red Hat Enterprise Linux 7 STIG v2.0.0
  • DISA Security Technical Implementation Guide (STIG) for VMware vSphere 6.7 ESXi – Ver 1 Rel 1
  • DISA Security Technical Implementation Guide (STIG) for VMware vSphere 6.7 Virtual Machine – Ver 1 Rel 1
  • DISA Security Technical Implementation Guide (STIG) for VMware vSphere 6.7 vCenter – Ver 1 Rel 1
  • DISA Security Technical Implementation Guide (STIG) for Microsoft Windows Firewall and Advanced Security – Ver 2, Rel 1
  • DISA Security Technical Implementation Guide (STIG) for VMware vSphere 6.7
  • Microsoft Security Baseline for Microsoft Edge v96
  • Microsoft Security Baseline for Windows 10, version 21H2
  • Qualys Security Configuration and Compliance Policy for AWS RDS – Amazon Aurora (MySQL)
  • Qualys Security Configuration and Compliance Policy for AWS RDS – Amazon Aurora (Oracle Database)
  • Qualys Security Configuration and Compliance Policy for AWS RDS – Amazon Aurora (PostgreSQL)
  • Qualys Security Configuration and Compliance Policy for AWS RDS – Amazon Aurora (SQL Server)
  • Qualys Security Configuration and Compliance Policy for AWS RDS – MariaDB
  • Qualys Security Configuration and Compliance Policy for AWS RDS – MySQL
  • Qualys Security Configuration and Compliance Policy for AWS RDS – PostgreSQL
  • Qualys Security Configuration and Compliance Policy for Azure Database for MariaDB
  • Qualys Security Configuration and Compliance Policy for Azure Database for MySQL
  • Qualys Security Configuration and Compliance Policy for Azure Database for PostgreSQL
  • Qualys Security Configuration and Compliance Policy for EulerOS 2.x
  • Qualys Security Configuration and Compliance Policy for Generic Linux
  • Qualys Security Configuration and Compliance Policy for IBM WebSphere Liberty 21
  • Qualys Security Configuration and Compliance Policy for MSFT Mariner
  • Qualys Security Configuration and Compliance Policy for Rocky Linux 8.x
  • Qualys Security Configuration and Compliance Policy for WebLogic Server 14c

If you have any questions, please contact your TAM or Technical Support. See all library updates.

Share your Comments

Comments

Your email address will not be published. Required fields are marked *