알림

No Image
공식계정

Migration from Chef InSpec and AWS Inspector to Tenable Security Center

Migration from Chef InSpec and AWS Inspector to Tenable Security Center








CMS Cloud


Migration from Chef InSpec and AWS Inspector to Tenable Security Center

________________________________________________________________________



Summary

On *June 18th, 2024*, CMS Hybrid Cloud decommissioned Chef InSpec and AWS Inspector to adopt Tenable Security Center [ https://www.tenable.com/products/security-center ] as our official enterprise tool for vulnerability and compliance scanning. Previously, we provided remediation guidance [ https://cloud.cms.gov/remediating-tenable-compliance-findings-on-pre-may-2024-gis ] to resolve any found findings as a result of this migration. Please review the remediation guidance if you still have persisting findings. Additionally, please check out our Tenable related documentation such as how to view findings in AWS Security Hub [ https://cloud.cms.gov/working-with-findings-aws-security-hub ], our introduction to the Tenable Security Center [ https://cloud.cms.gov/getting-started-with-tenable ], etc.

**Amazon Linux 2 (AL2), Red Hat Enterprise Linux 7 (RHEL7), and Red Hat Enterprise Linux 8 (RHEL8)* customers do not need to take further action*. See the "Impact" section below for more information. 

Benefits

Tenable Security Center [ http://tenable.sc/Nessus ] greatly improves vulnerability and compliance coverage compared to AWS Inspector and Chef Inspec. Tenable Security Center offers longer term support, comprehensive coverage, and consolidates reporting with all findings now available to report in Tableau. Regarding cost savings, Tenable Security Center provides these improvements at a lower cost than previous tooling.

Timeline

* *May 17th, 2024*: CMS Gold Images (GI) were published which now automatically scan via Tenable Security Center. 
* *June 18th, 2024*: Chef InSpec and AWS Inspector was decommissioned*.* Tenable Security Center is now our official tool for vulnerability and compliance scanning.*
*
* *June 30th, 2024*: CMS customers with new findings as a result of migration were notified via Tenable Security Center.

Impact

* *AL2 and RHEL8 customers may receive additional findings. Remediation options are as follows:*

* The CMS Hybrid Cloud Team recommends consuming CMS GIs released on *May 17th, 2024* or after.
* Please follow the remediation guidance [ https://cloud.cms.gov/remediating-tenable-compliance-findings-on-pre-may-2024-gis ] provided to resolve any additional findings.

* *Customers still using RHEL7 may also receive findings. Please prioritize upgrading to RHEL8*.
* RHEL7 reached end-of-life at the end of June 2024. Please reach out to your IUSG Advisor for any help upgrading to RHEL8.

* Reporting sources should be switched from Chef InSpec and AWS Inspector to Tenable Security Center findings.

Learn More

* CMS has adopted Tenable Security Center [ https://cloud.cms.gov/getting-started-with-tenable ]
* Working with Endpoint Findings in AWS Security Hub [ https://cloud.cms.gov/working-with-endpoint-findings-aws-security-hub ]
* Learn about Vulnerability Scanning [ https://cloud.cms.gov/vulnerability-scanning ]
* Learn about Database Protection [ https://cloud.cms.gov/database-protection ]

Questions

We look forward to working with you and your team on this effort. Reach out to your IUSG Advisor with any questions or to get help by creating a Hybrid Cloud Support ticket [ https://jiraent.cms.gov/plugins/servlet/desk/portal/22 ] and selecting the "Request Type" as "Security Hub: Finding".



Office of Information Technology




You are subscribed to receive email messages about CMS Cloud Operations, Changes, and Outages from the Centers for Medicare & Medicaid Services (CMS).

To update your subscription(s), preferences or to stop receiving messages from the CMS Cloud Operations, Changes, and Outages Updates- distribution list, please go to our Subscriber Preferences Page [ https://public.govdelivery.com/accounts/USCMS/subscriber/new?category_id=USCMS_C176 ].

________________________________________________________________________

This email was sent to mshinji3056@gmail.com using GovDelivery Communications Cloud 7500 Security Boulevard · Baltimore MD 21244


body .abe-column-block {min-height: 5px;}
  • [등록자]Centers for Medicare & Medicaid Services (CMS)
  • [언어]日本語
  • [지역]Baltimore, MD
  • 등록일 : 2024/07/01
  • 게재일 : 2024/07/01
  • 변경일 : 2024/07/01
  • 총열람수 : 38 명
Web Access No.1951799