CIS hardening benchmarks automation now available for Ubuntu 22.04 LTS

Presented by

Henry Coggill: Compliance PM,

About this talk

System hardening is an essential preventative security measure for production systems and critical workloads, especially for regulated industries such as healthcare, finance, telecommunications and the public sector. Hardening provides defense in depth by setting safe defaults and configurations, implementing least privileges, enabling robust logging and auditing, and enforcing encryption, in line with security industry best practices such as The Center for Internet Security (CIS) benchmarks. CIS uses a consensus process to release benchmarks to safeguard organisations against cyber attacks. To facilitate hardening and the application of these benchmarks on Ubuntu, customers can use Canonical’s automation tooling, the Ubuntu Security Guide (USG). Canonical has published the CIS benchmark hardening profile for the Ubuntu Security Guide on Jammy Jellyfish. This release provides automated remediation and auditing at scale for Ubuntu Pro customers, bringing 22.04 LTS systems in line with the industry standard CIS hardening benchmarks. The USG tool is available for previous Ubuntu releases, and now extends to the latest Ubuntu LTS. In this webinar, we will explain what the CIS benchmarks are all about and the range of configuration options that they touch. Then, we will discuss what the Ubuntu Security Guide tooling provides to Pro users, and demo how easy it is to install and run USG to create a hardened environment. And of course we will include some tips and tricks to make the process easier.
Related topics:

More from this channel

Upcoming talks (7)
On-demand talks (412)
Subscribers (165780)
Get the most in depth information about the Ubuntu technology and services from Canonical. Learn why Ubuntu is the preferred Linux platform and how Canonical can help you make the most out of your Ubuntu environment.