The CIS Google Cloud Computing Platform Foundations Benchmark v1.0.0 is an objective consensus-driven security guideline for the Google Cloud Computing Platform environment. As part of CIS efforts to provide actionable guidelines and tools for organizations that are interested in securing their public cloud, CIS has worked with the community since 2016 to publish a benchmark for Public Clouds.
Similar to the CIS benchmark for AWS and benchmark for Azure, the CIS for GCP framework addresses various IaaS and PaaS services in Google Cloud. The CIS benchmark for GCP includes standard topics across Identity and Access Management, Logging and Monitoring, Networking, Storage, Databases and Virtual Machines.
At Dome9 we strive to support you in your cloud journey. This is why our compliance research team worked so hard with CIS working Group to add the needed coverage to support the CIS Google Cloud Computing Platform Foundations Benchmark v1.0.0.
Get Started Today with Dome9 for CIS for GCP Compliance
The Dome9 Compliance Engine ensures continuous compliance automation for your GCP environment according to The CIS Google Cloud Computing Platform Foundations Benchmark v1.0.0 with a simple click of a button.
With a single click, you can automate your CIS continuous compliance assessment in real time using Dome9’s Compliance Engine and continuous compliance features.
How Does Dome9 Help with Google Cloud Security and Compliance?
1. Visibility into all of your Cloud Assets
A company needs to clearly define the scope of all the system components in scope for CIS for GCP. Dome9 provides you the visibility into cloud assets in order to comply with CIS for GCP since you cannot protect information that is not on your radar.
2. Compliance Engine
Real-time view of compliance and security posture for immediate risk mitigation
3. Governance Specification Language (GSL)
GSL allows Compliance and Security team to write and review any compliance check in seconds without deep technical knowledge – This equates to fewer errors in translating IT governance requirements to policy definitions.
4. Continuous Compliance
Continuous Compliance allows Dome9 clients to continuously run a compliance assessment according to various compliance suites and deliver findings through the most convenient method such as email, SNS notification message or PDF report.
5. Advanced Alerts and Exclusions Mechanism
Our Advanced Alerts and Exclusions Mechanism alerts you on findings that Dome9 discovers when scanning GCP Projects. This mechanism allows you to maintain compliance and easily trigger incident response and start your investigation if there are major issues and also ensure that all the False Positives are being taken care of.
7. Auto Remediation using Cloud Bots
CloudBots consists of a set of automatic remediation solutions built on top of Dome9’s continuous compliance capabilities. The auto-remediation framework enables you to take action on specific violations and reduce the time to resolution for these critical events.