Skip to content

Commit 6fbc6d1

Browse files
v-ccolinv-ccolin
authored
Merge pull request #267555 from ElazarK/compliance-standards
added compliance standards note
2 parents 236626f + 040b3ed commit 6fbc6d1

File tree

1 file changed

+36
-1
lines changed

1 file changed

+36
-1
lines changed

articles/defender-for-cloud/release-notes.md

Lines changed: 36 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2,7 +2,7 @@
22
title: Release notes
33
description: This page is updated frequently with the latest updates in Defender for Cloud.
44
ms.topic: overview
5-
ms.date: 02/26/2024
5+
ms.date: 03/06/2024
66
---
77

88
# What's new in Microsoft Defender for Cloud?
@@ -24,9 +24,44 @@ If you're looking for items older than six months, you can find them in the [Arc
2424

2525
|Date | Update |
2626
|----------|----------|
27+
| March 6 | [(Preview) Compliance standards added to compliance dashboard](#preview-compliance-standards-added-to-compliance-dashboard) |
2728
| March 5 | [Deprecation of two recommendations related to PCI](#deprecation-of-two-recommendations-related-to-pci) |
2829
| March 3 | [Defender for Cloud Containers Vulnerability Assessment powered by Qualys retirement](#defender-for-cloud-containers-vulnerability-assessment-powered-by-qualys-retirement) |
2930

31+
### (Preview) Compliance standards added to compliance dashboard
32+
33+
March 6, 2024
34+
35+
Based on customer feedback, we've added the following compliance standards in preview to our compliance dashboard. As shown, these are for reviewing the compliance status of AWS and GCP resources protected by Defender for Cloud.
36+
37+
| Compliance standard | Version | AWS | GCP |
38+
| ----------------------------------------------------- | ---------- | ------------------------------- | ------------------------------- |
39+
| AWS Well-Architected Framework | N/A | :white_check_mark: | :x: |
40+
| Brazilian General Personal Data Protection Law (LGPD) | 53/2018 | :white_check_mark: | :white_check_mark: |
41+
| California Consumer Privacy Act (CCPA) | 2018 | :white_check_mark: | :white_check_mark: |
42+
| CIS Controls | v8 | :x: | :white_check_mark: |
43+
| CIS Google Cloud Platform Foundation Benchmark | v2.0.0 | :x: | :white_check_mark: |
44+
| CIS Google Kubernetes Engine (GKE) Benchmark | v1.5.0 | :x: | :white_check_mark: |
45+
| CPS 234 (APRA) | 2019 | :x: | :white_check_mark: |
46+
| CRI Profile | v1.2.1 | :white_check_mark: | :white_check_mark: |
47+
| CSA Cloud Controls Matrix (CCM) | v4.0.10 | :white_check_mark: | :white_check_mark: |
48+
| Cybersecurity Maturity Model Certification (CMMC) | v2.0 | :x: | :white_check_mark: |
49+
| FFIEC Cybersecurity Assessment Tool (CAT) | 2017 | :x: | :white_check_mark: |
50+
| GDPR | 2016/679 | :white_check_mark: | :white_check_mark: |
51+
| ISO/IEC 27001 | 27001:2022 | :white_check_mark: | :white_check_mark: **(Update)** |
52+
| ISO/IEC 27002 | 27002:2022 | :white_check_mark: | :white_check_mark: |
53+
| ISO/IEC 27017 | 27017:2015 | :x: | :white_check_mark: |
54+
| NIST Cybersecurity Framework (CSF) | v1.1 | :white_check_mark: | :white_check_mark: |
55+
| NIST SP 800-171 | Revision 2 | :x: | :white_check_mark: |
56+
| NIST SP 800-172 | 2021 | :white_check_mark: | :white_check_mark: |
57+
| PCI-DSS | v4.0.0 | :white_check_mark: **(Update)** | :white_check_mark: **(Update)** |
58+
| Sarbanes Oxley Act (SOX) | 2002 | :x: | :white_check_mark: |
59+
| SOC 2 | 2017 | :x: | :white_check_mark: |
60+
61+
We are continuously working on adding and updating new standards for Azure, AWS, and GCP environments.
62+
63+
Learn how to [assign a security standard](update-regulatory-compliance-packages.md).
64+
3065
### Deprecation of two recommendations related to PCI
3166

3267
March 5, 2024

0 commit comments

Comments
 (0)