お知らせ
Migration from Chef InSpec and AWS Inspector to Tenable Security Center
- [登録者]Centers for Medicare & Medicaid Services (CMS)
- [言語]日本語
- [エリア]Baltimore, MD
- 登録日 : 2024/07/01
- 掲載日 : 2024/07/01
- 変更日 : 2024/07/01
- 総閲覧数 : 50 人
- お店を検索するなら『タウンガイド』
-
- ご注意:ワシントンDCエリアに校舎はありません。SAPIX USAは、ニューヨー...
-
あの「SAPIX」の授業がアメリカにいても受講できるんです!しかも!日本のSAPIXとは一味違う「SAPIX USA」の授業がグレーターワシントンDCでも受講できるんです!日本への進学・受験ならば、サピックスにお任せください。ニューヨーク校、ニュージャージー校、マンハッタン校、サンノゼ校の授業がオンラインで受講できます!ご注意:ワシントンDCエリアに校舎はありません。ニューヨーク校などのオンライン...
+1 (914) 358-5337SAPIX USA
-
- 精神科・心療内科医 松木隆志のDCオフィスへようこそ ワシントンD.C.全域にお...
-
転勤、留学、国際結婚などの様々な理由で毎年数多くの日本人が米国にやってきますが、そのうちの多くの方々が異国での慣れない生活、新しい仕事や学校への不適応、文化や言葉の壁、日本の家族や友人との離別など様々なストレスにさらされています。強いストレスは様々なこころの不調を引き起こします。こんな症状はありますか?気分の落ち込み、倦怠感、疲労感、喜びの消失、興味の消失、孤独感、焦燥感、罪悪感、空虚感、食欲減退...
+1 (201) 809-3508精神科・心療内科医 松木隆志
-
- 全米で日本語を話す医療者と患者をつなぎ、日本人コミュニティに向けた医療情報やサポ...
-
「FLAT・ふらっと」は、ニューヨークを拠点に全米で活動する非営利団体で、日本語を話す医療者と患者をつなぎ、日本人コミュニティをサポートしています。アメリカでの医療や保険の複雑さに直面する日本人やその介護者、高齢化に伴い孤立するシニアが増加する中、私たちは必要な情報やサポートを提供しています。オンライン活動も活発に行っており、ニューヨーク以外にお住まいの方でも気軽にご参加いただけます。健康に関する...
+1 (772) 349-9459FLAT ・ふらっと
-
- ワシントンDC・バージニア州・メリーランド州・コネチカット州のかかりつけクリニッ...
-
日本を離れ、米国で暮らしている方々にとって、最も心配かつ重要なことは自分や家族の健康のことです。ニュージャージーに位置する当クリニックでは、内科、小児科、外科、婦人科、皮膚科、眼科、耳鼻咽喉科など、あらゆる診療科に対応しています。この度、ひばりファミリーメディカルでは、ニュージャージー州に加え、ワシントンDC、バージニア州、メリーランド州、コネチカット州での遠隔診療を開始致しました。遠隔にお住まい...
+1 (201) 581-8553ひばりファミリーメディカル
CMS Cloud
Migration from Chef InSpec and AWS Inspector to Tenable Security Center
________________________________________________________________________
Summary
On *June 18th, 2024*, CMS Hybrid Cloud decommissioned Chef InSpec and AWS Inspector to adopt Tenable Security Center [ https://www.tenable.com/products/security-center ] as our official enterprise tool for vulnerability and compliance scanning. Previously, we provided remediation guidance [ https://cloud.cms.gov/remediating-tenable-compliance-findings-on-pre-may-2024-gis ] to resolve any found findings as a result of this migration. Please review the remediation guidance if you still have persisting findings. Additionally, please check out our Tenable related documentation such as how to view findings in AWS Security Hub [ https://cloud.cms.gov/working-with-findings-aws-security-hub ], our introduction to the Tenable Security Center [ https://cloud.cms.gov/getting-started-with-tenable ], etc.
**Amazon Linux 2 (AL2), Red Hat Enterprise Linux 7 (RHEL7), and Red Hat Enterprise Linux 8 (RHEL8)* customers do not need to take further action*. See the "Impact" section below for more information.
Benefits
Tenable Security Center [ http://tenable.sc/Nessus ] greatly improves vulnerability and compliance coverage compared to AWS Inspector and Chef Inspec. Tenable Security Center offers longer term support, comprehensive coverage, and consolidates reporting with all findings now available to report in Tableau. Regarding cost savings, Tenable Security Center provides these improvements at a lower cost than previous tooling.
Timeline
* *May 17th, 2024*: CMS Gold Images (GI) were published which now automatically scan via Tenable Security Center.
* *June 18th, 2024*: Chef InSpec and AWS Inspector was decommissioned*.* Tenable Security Center is now our official tool for vulnerability and compliance scanning.*
*
* *June 30th, 2024*: CMS customers with new findings as a result of migration were notified via Tenable Security Center.
Impact
* *AL2 and RHEL8 customers may receive additional findings. Remediation options are as follows:*
* The CMS Hybrid Cloud Team recommends consuming CMS GIs released on *May 17th, 2024* or after.
* Please follow the remediation guidance [ https://cloud.cms.gov/remediating-tenable-compliance-findings-on-pre-may-2024-gis ] provided to resolve any additional findings.
* *Customers still using RHEL7 may also receive findings. Please prioritize upgrading to RHEL8*.
* RHEL7 reached end-of-life at the end of June 2024. Please reach out to your IUSG Advisor for any help upgrading to RHEL8.
* Reporting sources should be switched from Chef InSpec and AWS Inspector to Tenable Security Center findings.
Learn More
* CMS has adopted Tenable Security Center [ https://cloud.cms.gov/getting-started-with-tenable ]
* Working with Endpoint Findings in AWS Security Hub [ https://cloud.cms.gov/working-with-endpoint-findings-aws-security-hub ]
* Learn about Vulnerability Scanning [ https://cloud.cms.gov/vulnerability-scanning ]
* Learn about Database Protection [ https://cloud.cms.gov/database-protection ]
Questions
We look forward to working with you and your team on this effort. Reach out to your IUSG Advisor with any questions or to get help by creating a Hybrid Cloud Support ticket [ https://jiraent.cms.gov/plugins/servlet/desk/portal/22 ] and selecting the "Request Type" as "Security Hub: Finding".
Office of Information Technology
You are subscribed to receive email messages about CMS Cloud Operations, Changes, and Outages from the Centers for Medicare & Medicaid Services (CMS).
To update your subscription(s), preferences or to stop receiving messages from the CMS Cloud Operations, Changes, and Outages Updates- distribution list, please go to our Subscriber Preferences Page [ https://public.govdelivery.com/accounts/USCMS/subscriber/new?category_id=USCMS_C176 ].
________________________________________________________________________
This email was sent to mshinji3056@gmail.com using GovDelivery Communications Cloud 7500 Security Boulevard · Baltimore MD 21244
body .abe-column-block {min-height: 5px;}