Overview
The Defense Information Systems Agency Security Technical Implementation Guides (DISA STIG) provide a comprehensive set of guidelines for securing information systems and software used by the U.S. Department of Defense. Compliance with DISA STIG ensures that systems are equipped with robust security controls to protect against a wide range of cyber threats. This is critical for organizations operating in highly sensitive and secure environments, such as defense and government sectors.
This CentOS 9 virtual machine image is hardened with hundreds of security controls built-in to ensure the confidentiality, integrity, and availability of sensitive data. With this preconfigured CentOS 9 image, companies can easily deploy a DISA STIG-compliant environment, reducing the time and resources required for security implementation. Foundation Security's image is regularly updated to keep up with the latest security threats and compliance regulations, providing customers with confidence that their data is well-protected. This offering is ideal for organizations that require a secure and compliant environment to protect their sensitive information.
Foundation Security has a team of industry experts with deep knowledge of security and compliance regulations. This ensures that their virtual machine image is well-designed and implemented with the highest level of security standards. Additionally, their experienced team provides ongoing support to ensure their customers' security needs are met. As proud AWS Partners, Foundation Security's images are used by several Fortune 500 companies, demonstrating the reliability and trustworthiness of their solutions.
Highlights
- Enhanced Security and Compliance: Foundation Security's VMs are hardened with hundreds of security controls and are regularly updated to comply with the latest security standards, ensuring robust protection for sensitive data.
- Expert Support and Maintenance: Our team of industry experts provides ongoing support and maintenance, helping customers quickly deploy and manage compliant environments with minimal effort.
- Trusted by Leading Organizations: As proud AWS Partners, our VMs are trusted and used by several Fortune 500 companies, offering a proven solution for secure and compliant virtual machine deployments.
Details
Unlock automation with AI agent solutions

Features and programs
Financing for AWS Marketplace purchases
Pricing
- ...
| Dimension | Cost/hour | 
|---|---|
| t3.medium  Recommended | $0.14 | 
| t3.micro AWS Free Tier | $0.07 | 
| d3.4xlarge | $0.49 | 
| t3.small | $0.07 | 
| m5ad.8xlarge | $0.49 | 
| z1d.6xlarge | $0.49 | 
| r6a.48xlarge | $0.49 | 
| r5a.16xlarge | $0.49 | 
| m5a.xlarge | $0.49 | 
| c6in.32xlarge | $0.49 | 
Vendor refund policy
Refunds through AWS are not available at this time. You will only be billed for actual time of instance use. As with all Foundation Security products, our aim is always 100 percent customer/member satisfaction.
How can we make this page better?
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Initial release of DISA STIG Compliant CentOS 9
Additional details
Usage instructions
Connecting to the VM
To connect to your instance, you will need to use SSH over port 22. The default username for connecting is ec2-user. For further information about the standard AWS method of connecting to an instance, please refer to the following guide: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/AccessingInstances.html .
Regarding Security Configurations
Utilizing hardened images necessitates a nuanced approach due to their advanced security configurations and access controls, which may require additional adjustments for compatibility with specific workflows or applications. These images are designed with enhanced security measures to minimize vulnerabilities, offering superior protection compared to baseline images without pre-configured security settings. However, integrating them seamlessly into your operations might involve collaboration with security experts or providers for customization, ensuring both robust security and operational functionality. This extra step, while requiring more initial setup, positions hardened images as a more secure and compliant foundation for deployments, ultimately offering a significant advantage over baseline images by saving time and resources in achieving a secure, compliant, and efficient infrastructure.
Additional Details
- No additional external resources are required for the product to function.
- There are no security keys or credentials in place that need to be rotated.
- There is no customer data that is collected for this software to function.
Resources
Vendor resources
Support
Vendor support
Our knowledgeable support team is readily available to answer any questions you may have regarding our virtual machine images. Please feel free to contact us if you need any further information - we are always here to help. Reach out directly at support@foundationvm.comÂ
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.