Announcing Cloud Asset Compliance for Oracle Cloud Infrastructure

In Axonius version 3.11, Axonius Cloud Asset Compliance added support for the CIS Oracle Cloud Infrastructure Foundations Benchmark v1.0.0. 

Released in early August, the CIS standards contain consensus best practices that can help safeguard Oracle Cloud Infrastructure (OCI) against today’s evolving cyber threats, and are important for evaluating cloud security posture.

As the move to the cloud continues to grow, Axonius supports customers by integrating with all major cloud IAAS providers, including Amazon Web Services, Microsoft Azure, Alibaba Cloud, IBM Cloud, Openstack, and Oracle Cloud. Axonius is one of a few (if not the only) certified vendors to already offer support for the newly published CIS Oracle Cloud Infrastructure Foundations Benchmarks. (We also support Amazon Web Services and Microsoft Foundations CIS Benchmarks).

How Axonius Cloud Asset Compliance Helps

Many of today’s cloud security incidents are due to policy lapses, misconfigurations, and overly permissive access rights. 

Axonius Cloud Asset Compliance automatically finds how cloud infrastructure adheres to and deviates from cloud security best practices. 

For instance, you can be notified immediately and reference clear remediation instructions if cloud infrastructure doesn’t meet best practices in areas such as networking, identity and access management, and user logging and monitoring. 

Also, Axonius can detail the devices and users associated with cloud assets that fail best practices, allowing you to instantly understand the scope and potential impact of issues.

How It Works

1. Connect: Connect the Oracle Cloud adapter in the Axonius Cybersecurity Asset Management Platform. Once connected, Axonius Cloud Asset Compliance simply leverages data from your Oracle accounts to see how accounts adhere to or deviate from scored rules in the CIS benchmark. 
2. Get Results: Compliance mapping results are generated automatically and show affected users and assets, with detailed remediation instructions for each failed rule.
3. Filter, Report, and Take Action: Filter compliance results for specific accounts and rules, share results via email, and follow remediation instructions within Axonius to fix misconfigurations that have failed a rule.