Development Security Checklist

01
02
03
04
05
06
07
08
01

Governance / Culture

Back to Top
Nominate a security champion
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Build Security Champion Communities
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Define security metrics
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Define Security requirements based on the threat input
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Complete Mandatory security trainings
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Create data flow diagram for the underlying infrastructure
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Follow an onboarding / offboarding checklist
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Create an inventory of dependencies and running artifacts
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Define deployment process
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Define roles and entitlements in the CI, CD, platform and application
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Document team specifc patching process
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
02

Identity life cycle Management

Back to Top
No priviledged or user acces to production
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Handover of confidential parameters
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Manage App user lifecycle in the central IAM solution
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Manage all identities in the active directory
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Manage all NPAs and other identities in the active directory
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Enforce MFA everywhere
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Manage permissions to the repositories and pipelines based on CIS benchmarck
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Role based authentication and authorization
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
PIM for break glass production access
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
03

Pipeline / SupplyChain security

Back to Top
Evaluate and enforce CIS supply chain benckmark
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Enforce and evaluate Pipeline access Policies
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Enforce usage of trusted and hardened container images
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Build steps are defined as code
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Ensure changes to pipeline files are tracked and reviewed
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Scan pipelines automatically for misconfigurations
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Make all changes and requirements are traceble across the lifecycle
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Sign artifacts on all releases
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Lock external dependencies used in the build process
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Dependencies are validated before being used
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
04

Development Phases Security

Back to Top
Add mandatory build step to scan the code for security vulnerabilities during the CI phase
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Scan the IAC code for vulnerabilities
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Scanners are in place for code vulnerabilities
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Add mandatory build step to scan the open source libraries for security vulnerabilities and licensing issues during the CI phase
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Validate APIs for security design
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Eliminate dead code
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Remove all external connections and replace with trusted links
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Exclude source code duplicates
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Add mandatory secret scanning build step to the CI phase
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
05

Deployment security

Back to Top
Scan the deploying environment for NIST or own compliance and enforce the preventative policies
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Separate deployment configuration files from source code
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Deployment configuration are tracked seperately from the code
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Scan the images and deployment configuration to prevent sensitve and insecure data.
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Scanners are in place to secure Infrastructure as Code (IaC) instructions
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Automate all deployments and no manual access to production allowed
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
No developer access to production environment
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Check and prevent default passwords usage
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Enforce rolling update of deployment
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Enforce usage of Defender agents in the deployment configurations
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Share deployment configurations to specific and limited members
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Verify deployment configuration manifests
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
06

Platform security

Back to Top
Evaluate and deploy Infrastructure security as code (policies)
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Encrypt everywhere (preferred with CMK)
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Use Immutable Infrastructure
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Track all changes for all componenets
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Isolate Production, Acceptance and Dev environments.
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Enforce micro service architecture (API only as a future state)
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
No outgoing traffic except via proxy or central monitoring solution
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Back up regularly , test back ups and enforce restore points
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
07

Vulnerability life cycle management

Back to Top
Scan all images for vulnerabilities during the build steps
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Implement or use golden images with Nessus agent
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Create a vulnerability remediation backlog
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Automate stable platform product patches
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Define mitigation plan for critical and high vulnerabilities
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Review vulnerabilities dashboard regularly
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Priortise the vulnerability remediation in the internet facing services
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Update the OS for underlying VMs or VM scalesets if using kubernete clusters
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Define mitigation plan for critical and high Review and remediiate high seveiry issues coming from various assessment / audit sources
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
08

Logging and Monitoring

Back to Top
Enfiorce the usage of log analytics in the deployment configurations
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Send all logs to log anlytics by other means if log analytics agent can not be installed
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Define a process to action security events
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Define and assign incident response roles including who should reach out to CISO department in the event of potential security issues
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Develop and implement application specific security monitoring use cases (limit to critical apps)
Adoption status
Applicable platform
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Capabilities from CISO
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Automation Status
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Implemented
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Metric to monitor and report
Text
Who
Text
Maturity
Text
Our products
Security Maturity Lifecycle Cloud Security PostureAutomated Threat ModelingASPM - Pipeline Security
Patents pending -> Europe - EP23020192.3, US IP 18135688, India - 202341029005
Copyright © 2024 Aristiun - All Rights Reserved.