Standards
Security Configuration Management bases its checklist on various authority standards.
- Center for Internet Security
- The Center for Internet Security (CIS) guidelines recommends technical control rules and values that are applicable to network devices, operating systems, software applications, and middleware applications. CIS guidelines are consensus-based and are used by the US government and businesses in various industries.
- Defense Information System Agency Security Technical Implementation Guidelines
- The Defense Information Systems Agency (DISA) releases the Security Technical Implementation Guidelines (STIG). STIG provides recommendations for secure installation, configuration, and maintenance of software, hardware, and information systems. STIG is one of the basis of configuration standards that the US Department of Defense uses.
- Payment Card Industry Data Security Standard
- The Payment Card Industry Data Security Standard (PCI DSS) is a baseline of technical and organizational requirements that are related to the Payment Card Industry.
- HIPAA Standards
- The HIPAA compliance is mandatory for organizations that are handling Protected Health Information (PHI), including hospitals, healthcare providers, insurers, and associated businesses. A single security misconfiguration on a workstation can lead to data breaches, regulatory penalties, and operational risks. Ensuring that endpoints adhere to HIPAA security guidelines is critical for protecting patient data and maintaining regulatory compliance. HIPAA Checklist for Windows Server addresses the following platforms Windows Server 2016, 2019, 2022, and HIPAA Checklist for Windows Workstation addresses Windows 10 and 11.
- NIS2 Standards
- The NIS2 Compliance Checklist is a specialized content pack designed to assess compliance against the technical requirements of Directive (EU) 2022/2555. This release aggregates relevant checks from widely recognized benchmarks (CIS) and maps them directly to the specific risk-management measures mandated by Article 21(2). This allows you to enforce security configurations and audit your environment against European cybersecurity standards. NIS2 Checklist for Windows Server addresses the following platforms Windows Server 2016, 2019, 2022, 2025 and NIS2 Checklist for Windows Workstation addresses Windows 10 and 11.
- Universal Checklist
- The Universal Checklist is a consolidated checklist designed to assess general purpose compliance across all supported endpoint versions. The initial beta release is a collection of all the checks from CIS and DISA benchmarks for all the supported versions. It allows you to enforce security configurations across your entire environment with a single action. Universal Checklist for Windows Server addresses the following platforms Windows Server 2016, 2019, 2022, 2025 and Universal Checklist for Windows Workstation addresses the following platforms Windows 10 and 11.
- NIST 800-53 Standards
- The NIST 800-53 Rev 5 Compliance Checklist is a new content pack designed to assess and enforce compliance against the security and privacy controls defined in NIST SP 800-53 Revision 5 for Windows Servers and Workstations. This checklist maps technical controls directly to NIST 800-53 Rev 5 control families, allowing you to monitor, enforce, and report on your Windows Server security posture against one of the most comprehensive Federal security frameworks available.