Applying CIS (Center for Internet Security) or STIG (Secure Technical Implementation Guides) is a must-have to meet PCI, HIPAA, NIST, CMMC, FedRAMP and other regulatory compliance requirements. However, it's still challenging because automation at this scale and complexity is hard (trust us, we know!). This is where we come in.
Windows Server 2016
Windows Server 2019
RHEL 6, 7, & 8
CentOS 6, 7, & 8
Ubuntu 18 & 20 LTS
Apache Tomcat 9
Apache httpd 2.4
We can automate and support nearly any custom requirement.
Our Ansible content can be used by entire teams to ensure deployed systems and applications are compliant.
Automatically take a pre and post-run remediation score using OpenSCAP. Use this NIST-approved reporting to demonstrate compliance or add your own code to manipulate the output into whatever format you need.
We built our content to be repeatedly run on systems, so the same content works with new deployments and existing infrastructure.