Security Technical Implementation Guides (STIGs) contain technical guidance on how to lock down systems that might otherwise be vulnerable to attack. This document provides the different options for deploying and operating Prisma Cloud Compute Edition (self-hosted) within environments that adhere to public-sector and Department of Defense guidance.
All Prisma Cloud Compute findings are posted here.
DISA STIG Compliance Template
Release v21_04_412 include the Docker Enterprise 2.x Linux/UNIX STIG compliance checks into the “DISA STIG” compliance template.
When you create a new compliance policy and select the DISA STIG compliance template, you will automatically receive alerts based on the checks aligned with the STIG.
The mapping of the STIG_ID to Prisma Cloud Compute Compliance Check ID can be found here.
DISA STIG for Prisma Cloud Compute Edition Configuration
Palo Alto Networks is in the process of developing a DISA STIG for the configuration of your Prisma Cloud Compute implementation.
For details, see here.