I'm looking for recommendations on tools for conducting hardening assessments on servers, both within AWS and from external sources. This is especially important for a business development audit I'm involved in, aimed at meeting security compliance standards for the banking sector. Any suggestions?
2 Answers
The tools you choose really depend on the specifics of your business and the compliance standards you need to meet for your audits. If you're focused on security for banking, you'll need to be pretty thorough.
For assessing server security, AWS provides great built-in tools like AWS Config, Security Hub, and Systems Manager. These can help monitor your servers for vulnerabilities. Outside of AWS, tools like Nessus are useful for vulnerability scanning, Lynis is excellent for testing Linux servers, and CIS-CAT is great for checking adherence to security benchmarks. They can generate reports that you can present to auditors to show your compliance with industry security requirements.
Exactly what I was looking for, thanks a lot!
Thanks for the insight! We're definitely under strict compliance.