Skip to content

Security Compliance Directory

This directory contains documentation on the compliance framework alignment for the Secure CINC Auditor Kubernetes Container Scanning solution.

Available Documents

Document Description
Index Overview of compliance framework alignment
Approach Comparison Comparison of scanning approaches against compliance frameworks
Risk Documentation Requirements for documenting compliance risks
DoD 8500.01 Alignment Alignment with DoD Instruction 8500.01
DISA SRG Alignment Alignment with DISA Container Platform SRG
Kubernetes STIG Alignment Alignment with Kubernetes STIG
CIS Benchmarks Alignment Alignment with CIS Kubernetes Benchmarks
NSA/CISA Hardening Guide Alignment with NSA/CISA Kubernetes Hardening Guide
Directory Description
Security Principles Core security principles
Risk Analysis Security risk assessment
Threat Model Security threat modeling
Recommendations Security best practices and recommendations