Info Type
View Option
Sort by Category
Notification
Migration from Chef InSpec and AWS Inspector to Tenable Security Center
- [Registrant]Centers for Medicare & Medicaid Services (CMS)
- [Language]日本語
- [Location]Baltimore, MD
- Posted : 2024/07/01
- Published : 2024/07/01
- Changed : 2024/07/01
- Total View : 49 persons
- Find local business with Town Guide
-
- Psychiatry ・ Welcome to the DC office of...
-
Many of these people are experiencing a variety of stresses, such as unfamiliarity with a foreign country, adjustment to a new job or school, cultural and language barriers, and separation from Japane...
+1 (201) 809-3508精神科・心療内科医 松木隆志
-
- It is a non-profit organization that con...
-
FLAT ・ FLAT is a non-profit organization based in New York City and operating throughout the United States, connecting Japanese-speaking medical professionals and patients and supporting the Japanese ...
+1 (772) 349-9459FLAT ・ふらっと
-
- Please note : There is no school in the ...
-
! Moreover, ! "SAPIX USA", which is different from SAPIX in Japan, is also available in Greater Washington, DC ! Entering Japan ・ If you want to take an entrance examination, leave it to SAPIX. Y...
+1 (914) 358-5337SAPIX USA
-
- Washington, DC ・ Virginia ・ Maryland ・ C...
-
For those who have left Japan and are living in the U.S., the most worrisome and important thing is the health of themselves and their families. Located in New Jersey, our clinic offers a full range o...
+1 (201) 581-8553Hibari Family Medical
CMS Cloud
Migration from Chef InSpec and AWS Inspector to Tenable Security Center
________________________________________________________________________
Summary
On *June 18th, 2024*, CMS Hybrid Cloud decommissioned Chef InSpec and AWS Inspector to adopt Tenable Security Center [ https://www.tenable.com/products/security-center ] as our official enterprise tool for vulnerability and compliance scanning. Previously, we provided remediation guidance [ https://cloud.cms.gov/remediating-tenable-compliance-findings-on-pre-may-2024-gis ] to resolve any found findings as a result of this migration. Please review the remediation guidance if you still have persisting findings. Additionally, please check out our Tenable related documentation such as how to view findings in AWS Security Hub [ https://cloud.cms.gov/working-with-findings-aws-security-hub ], our introduction to the Tenable Security Center [ https://cloud.cms.gov/getting-started-with-tenable ], etc.
**Amazon Linux 2 (AL2), Red Hat Enterprise Linux 7 (RHEL7), and Red Hat Enterprise Linux 8 (RHEL8)* customers do not need to take further action*. See the "Impact" section below for more information.
Benefits
Tenable Security Center [ http://tenable.sc/Nessus ] greatly improves vulnerability and compliance coverage compared to AWS Inspector and Chef Inspec. Tenable Security Center offers longer term support, comprehensive coverage, and consolidates reporting with all findings now available to report in Tableau. Regarding cost savings, Tenable Security Center provides these improvements at a lower cost than previous tooling.
Timeline
* *May 17th, 2024*: CMS Gold Images (GI) were published which now automatically scan via Tenable Security Center.
* *June 18th, 2024*: Chef InSpec and AWS Inspector was decommissioned*.* Tenable Security Center is now our official tool for vulnerability and compliance scanning.*
*
* *June 30th, 2024*: CMS customers with new findings as a result of migration were notified via Tenable Security Center.
Impact
* *AL2 and RHEL8 customers may receive additional findings. Remediation options are as follows:*
* The CMS Hybrid Cloud Team recommends consuming CMS GIs released on *May 17th, 2024* or after.
* Please follow the remediation guidance [ https://cloud.cms.gov/remediating-tenable-compliance-findings-on-pre-may-2024-gis ] provided to resolve any additional findings.
* *Customers still using RHEL7 may also receive findings. Please prioritize upgrading to RHEL8*.
* RHEL7 reached end-of-life at the end of June 2024. Please reach out to your IUSG Advisor for any help upgrading to RHEL8.
* Reporting sources should be switched from Chef InSpec and AWS Inspector to Tenable Security Center findings.
Learn More
* CMS has adopted Tenable Security Center [ https://cloud.cms.gov/getting-started-with-tenable ]
* Working with Endpoint Findings in AWS Security Hub [ https://cloud.cms.gov/working-with-endpoint-findings-aws-security-hub ]
* Learn about Vulnerability Scanning [ https://cloud.cms.gov/vulnerability-scanning ]
* Learn about Database Protection [ https://cloud.cms.gov/database-protection ]
Questions
We look forward to working with you and your team on this effort. Reach out to your IUSG Advisor with any questions or to get help by creating a Hybrid Cloud Support ticket [ https://jiraent.cms.gov/plugins/servlet/desk/portal/22 ] and selecting the "Request Type" as "Security Hub: Finding".
Office of Information Technology
You are subscribed to receive email messages about CMS Cloud Operations, Changes, and Outages from the Centers for Medicare & Medicaid Services (CMS).
To update your subscription(s), preferences or to stop receiving messages from the CMS Cloud Operations, Changes, and Outages Updates- distribution list, please go to our Subscriber Preferences Page [ https://public.govdelivery.com/accounts/USCMS/subscriber/new?category_id=USCMS_C176 ].
________________________________________________________________________
This email was sent to mshinji3056@gmail.com using GovDelivery Communications Cloud 7500 Security Boulevard · Baltimore MD 21244
body .abe-column-block {min-height: 5px;}