Policy Compliance Library Updates, November 2019

Qualys’ library of built-in policies makes it easy to comply with the security standards and regulations that are most commonly used and adhered to. Qualys provides a wide range of policies, including many that have been certified by CIS as well as the ones based on security guidelines from OS and application vendors and other industry best practices.

In order to keep up with the latest changes in security control requirements and new technologies, Qualys publishes new content to the Policy Library every month.

The November release adds support to 3 new technologies, includes 1 new CIS Benchmark policy and provides updates to several existing policies in the Qualys Content Library.

Qualys’ Certification Page at CIS has been updated.

New Technologies

  • Cisco NX-OS 8.x
  • Apple Safari 11.x
  • Apple Safari 12.x

New CIS Benchmark Policy

CIS Benchmarks are developed through consensus, providing an industry recognized collection of best practice controls. Qualys is committed to providing broad coverage of the CIS Benchmarks with regular releases of CIS certified policies in Policy Compliance and also by contributing to the development of new benchmarks through the CIS Community.

This release contains the following new CIS Benchmark policy:

  • CIS Benchmark for SQL Server 2017 v1.0.0

Updated Library Policies

Policy refresh for the following library policies:

  • CIS Benchmark for Microsoft SQL Server 2016 v1.1.0
  • CIS Benchmark for Microsoft SQL Server 2012 v1.4.0
  • CIS Benchmark for Microsoft SQL Server 2014 v1.4.0

Policy update for control configuration changes:

  • CIS Benchmark for Debian Linux 9, v1.0.0
  • DISA Security Technical Implementation Guide (STIG) for Red Hat Enterprise Linux 7, V2R2

Policy update to add new version in technology:

  • Security Configuration and Compliance Policy for Fedora 30

Deprecated Policies

The following policies are deprecated and will not be supported from this release onwards:

  • CIS Benchmark for Microsoft SQL Server 2012, v1.4.0
  • CIS Benchmark for Microsoft SQL Server 2014, v1.3.0
  • CIS Benchmark for Microsoft SQL Server 2016, v1.0.0
  • Security Configuration and Compliance Policy for Microsoft SQL Server 2017

Coming Next Month

The following policies and updates are currently planned for release to the policy library next month:

New Coverage:

  • CIS Benchmark for macOS Safari v2.0.0
  • CIS Benchmark for Microsoft Windows 10 Release 1809 v1.6.0
  • Security Configuration and Compliance Policy for Fortinet Firewall
  • Security Technical Implementation Guide (STIG) for Apache HTTP 2.2 (Windows & Linux)
  • Security Technical Implementation Guide (STIG) for Canonical Ubuntu 16.04 LTS STIG Ver 1, Rel 2
  • Security Technical Implementation Guide (STIG) for Microsoft SQL Server 2014 Database and Instance
  • Security Technical Implementation Guide (STIG) for Microsoft SQL Server 2016 Database and Instance
  • Security Configuration and Compliance Policy for Cisco NX-OS 8.x and 9.x
  • Security Configuration and Compliance Policy for Cisco WLC 8.x
  • Security Configuration and Compliance Policy for Cisco FTD 6.x

If you have any questions, please contact your TAM or Technical Support. See all library updates.

One response to “Policy Compliance Library Updates, November 2019”

  1. Hi, this is a nice short informative summary thank you, but how much of this is also relevant to SCA please? Thanks, Tony

Leave a Reply