CIS Controls v7.1 IG1¶

Deprecated Framework

This framework has been superseded by CIS Critical Security Controls version 8.0, IG1. Organizations should migrate to version 8.0, which was released in May 2021 with modernized controls and improved implementation guidance.

The Center for Internet Security (CIS) Controls version 7.1 is a prioritized set of actions to protect organizations from known cyber attack vectors. Implementation Group 1 (IG1) represents basic cybersecurity hygiene appropriate for small to medium enterprises with limited IT and cybersecurity expertise. This framework consists of foundational safeguards that all organizations should implement regardless of industry or geography.

Terraform Registry Subdomain: `cisv71ig1`¶

Terraform Registry formatHTTPS URL format

module "..." {
  source  = "cisv71ig1.compliance.tf/terraform-aws-modules/<module>/aws"
  version = "<version>"
}

module "..." {
  source = "https://cisv71ig1.compliance.tf/terraform-aws-modules/<module>/aws"
}

Refer to the Terraform Registry Endpoints section for more details.

Implemented Controls¶

The following controls are implemented as part of this framework.

Enable/Disable Controls¶

You can customize the Terraform module for the desired compliance requirements by enabling/disabling individual controls.

Examples¶

S3 bucket module with CIS Controls v7.1 IG1 compliance framework controls enabled, and a couple of controls disabled¶

module "..." {
  source = "https://cisv71ig1.compliance.tf/terraform-aws-modules/s3-bucket/aws?disable=backup_plan_min_retention_35_days,s3_bucket_logging_enabled"
}