Compliance Engine Rulesets & Rules

In this topic:

    Dome9 Compliance Framework!

    Dome9 Compliance Content management is be based on the unified mapping of all the Dome9 compliance checks to various security and compliance frameworks.

    Our robust mapping mechanism, streamlines the bundle management processes and is based on one of the main Governance, Risk and Compliance (GRC) principles - unified risk and controls framework.

     

    Dome9 Compliance Coverage:
    Security Compliance Framework AWS AZURE GCP
    CIS supported today supported today supported today
    NIST 800-53 supported today supported today supported today
    PCI-DSS 3.2 supported today supported today supported today
    HIPAA supported today supported today Coming Soon
    GDPR supported today supported today Coming Soon
    ISO27001 supported today supported today  supported today 
    SOC2 supported today supported today  supported today 
    SOX Preview Available Preview Available Preview Available 
    NIST CSF v1.1 supported today  supported today supported today 
    Fedramp Preview Available Preview Available  Preview Available 
    CSA CCM v3.0.1 supported today Preview Available  Preview Available 
    Serverless Security supported today Coming Soon  Coming Soon  
    Containers Security Preview Available   Coming Soon  Coming Soon  
     

    Dome9 Compliance Engine is an end-to-end security and compliance solution for assessment, remediation and continuous security compliance enforcement. The Dome9 GSL (Governance Specification Language) is a syntax to define cloud security and compliance rules which can be applied in the Dome9 Compliance Engine.

    The Cloud Security Posture Repository is a shared security and compliance knowledge platform for AWS, Azure and GCP. It provides an evolving set of security and compliance best practices, curated and developed by Dome9. The controls include risk and remediation details needed for security governance and compliance of public cloud environments.