Share via

Is Microsoft-published security compliance baselines being compliant to CIS and NIST frameworks and security best practices?

Melchi Jeremiah 20 Reputation points
2024-02-20T05:37:10.8666667+00:00

I would like to harden a fleet of client PCs running Microsoft Windows 10 version 22H2 using its corresponding security compliance baseline and toolkit that was provided on Microsoft website and I would like to know if the microsoft-published security baseline for Windows 10 version 22H2 to use for OS hardening is compliant with CIS and NIS frameworks and security best practices. Would really appreciate to get insights from a rightful member. Thank you.

Windows for business | Windows Client for IT Pros | Devices and deployment | Configure application groups
Windows for business | Windows Client for IT Pros | User experience | Other
0 comments
Accepted answer
  1. Adharsh Santhanam 6,020 Reputation points Volunteer Moderator
    2024-02-20T05:55:08.9633333+00:00

    Hello @Melchi Jeremiah The release of the security baseline package for Windows 10 version 22H2 is NOT EXPLICITLY LABELED as compliant with CIS or NIST frameworks. However, it incorporates security best practices and aligns with industry standards and so, there should be a fair bit of coverage. To ensure alignment with CIS and NIST frameworks, it's important to cross-reference with those baselines defined there.

    Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.