CSCv7|13.1

Title

Maintain an Inventory Sensitive Information

Description

Maintain an inventory of all sensitive information stored, processed, or transmitted by the organization's technology systems, including those located onsite or at a remote service provider.

Reference Item Details

Category: Data Protection

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1 Ensure the Pre-Installation Planning Checklist Has Been ImplementedUnixCIS Apache HTTP Server 2.4 L1 v2.1.0 Middleware
1.1 Ensure the Pre-Installation Planning Checklist Has Been ImplementedUnixCIS Apache HTTP Server 2.4 L1 v2.1.0
1.2.1 Ensure that only organizationally managed/approved public groups existmicrosoft_azureCIS Microsoft 365 Foundations E3 L2 v3.0.0
1.3.7 Ensure 'third-party storage services' are restricted in 'Microsoft 365 on the web'microsoft_azureCIS Microsoft 365 Foundations E3 L2 v3.0.0
1.3.8 Ensure that Sways cannot be shared with people outside of your organizationmicrosoft_azureCIS Microsoft 365 Foundations E3 L2 v3.0.0
3.3.1 Ensure SharePoint Online Information Protection policies are set up and usedmicrosoft_azureCIS Microsoft 365 Foundations E3 L1 v3.0.0
5.1.6.1 Ensure that collaboration invitations are sent to allowed domains onlymicrosoft_azureCIS Microsoft 365 Foundations E3 L2 v3.0.0
6.5.3 Ensure additional storage providers are restricted in Outlook on the webmicrosoft_azureCIS Microsoft 365 Foundations E3 L2 v3.0.0
9.11 Ensure Azure Key Vaults are Used to Store Secretsmicrosoft_azureCIS Microsoft Azure Foundations v2.0.0 L2
18.7.1.1 (L2) Ensure 'Turn off notifications network usage' is set to 'Enabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L2
18.7.1.1 (L2) Ensure 'Turn off notifications network usage' is set to 'Enabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker
CIS Control 13 (13.1) Maintain an Inventory of Sensitive InformationUnixCAS Implementation Group 1 Audit File