Overview
The CIS Hardened Image Level 1 on Amazon Linux 2023 component is built by the Center for Internet Security (CIS®) for use on Amazon Image Builder. It is a security-hardened image that aligns with the robust security recommendations, the CIS Benchmarks, making it easier for organizations to meet regulatory requirements. Key Benefits Enhanced Security: Mitigates risks like malware, denial of service, and authorization issues by following globally-recognized secure configuration guidance to support your cloud security posture management (CSPM) program. Compliance Readiness: Helps your organization comply with PCI DSS, FedRAMP, DoD Cloud Computing SRG, FISMA, select NIST publications, and more. Faster Deployment: Pre-configured according to CIS Benchmarks, allowing you to deploy secure virtual machine images. Consistency Across Environments: Ensures consistent security configurations across development, testing, and production environments, reducing drift and compatibility risks. Cost Efficiency: Lowers remediation efforts, reduces attack surface, and minimizes business loss from security incidents. Easier Maintenance: Regular updates ensure that your systems are always in line with the latest security standards and software patches. This image is hardened against the corresponding Level 1 profile which is intended to be practical and prudent, provide a clear security benefit, and not inhibit the utility of the technology beyond acceptable means. No packages are installed on or removed from this image outside of those already present on the base image or as recommended in alignment with the corresponding CIS Benchmark recommendations. To learn more or access the corresponding CIS Benchmark, please visit https://www.cisecurity.org/cis-benchmarks or sign up for a free account on our community platform, CIS WorkBench, https://workbench.cisecurity.org/ .
Highlights
- Hardened according to a Level 1 CIS Benchmark that is developed in a consensus-based process and that is accepted by government, business, industry, and academia. Helps with compliance to PCI DSS, FedRAMP, DoD Cloud Computing SRG, FISMA, select NIST publications, and more.
- Helps with compliance to PCI DSS, FedRAMP, DoD Cloud Computing SRG, FISMA, select NIST publications, and more.
- Pre-configured to align with industry best practices that are developed and supported by CIS, this image has hardened account and local policies, firewall configuration, and computer-based and user-based administrative templates.
Details
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
Pricing
- ...
Dimension | Cost/hour |
|---|---|
t2.micro | $0.022 |
t3.micro | $0.022 |
t4g.xlarge | $0.024 |
r8gb.4xlarge | $0.035 |
m7g.8xlarge | $0.05 |
p3.2xlarge | $0.026 |
r5.2xlarge | $0.026 |
r6gd.4xlarge | $0.035 |
x8g.xlarge | $0.024 |
m7g.large | $0.022 |
Vendor refund policy
Questions, feedback, and support accessing CIS-developed AMIs is provided by contacting https://www.cisecurity.org/support/ .
How can we make this page better?
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
CIS Amazon Linux 2023 Level 1 Hardening Component - Staging
- Amazon EC2 Image Builder
EC2 Image Builder Component
EC2 Image Builder is a fully managed AWS service. It automates creation, management, and deployment of custom, secure, and up-to-date server images. After procurement, use the EC2 Image Builder console/API to include this third-party component in golden images for future EC2 instances.
Version release notes
Initial Release of version 1.0.0.1
Additional details
Usage instructions
No sensitive information supplied by customers will be stored outside this instance. No data encryption configuration is applicable to this instance. You can encrypt the instance EBS volume per standard EC2 processes. No programmatic system credentials and cryptographic keys are used by this instance. Launch the instance via the AWS Marketplace or EC2 console. Navigate to your Amazon EC2 console and verify that you're in the correct region. Choose instance and select your launched instance. Select the server to display your metadata page and choose the Status checks tab at the bottom of the page to review if your status checks passed or failed. Connect using SSH. Use ec2-user as the username. Immediately apply latest security updates to the instance.
Support
Vendor support
For Usage Instructions, please visit: https://hardened-images.docs.cisecurity.org/en/latest/source/content/3-User-Guide/About/components/
Questions, feedback, and support accessing CIS-developed AMIs is provided by contacting
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.