Oracle Cloud Marketplace now offers customers the ability to use the CIS Hardened Image for Microsoft Windows Server 2019. Access the CIS Hardened Image for Windows Server 2019.
The CIS Windows Server 2019 Hardened Image is built by the Center for Internet Security® (CIS®) from the recommendations in the CIS Microsoft Windows Server 2019 Benchmark. CIS Benchmarks™ are a set of configuration guidelines designed to reduce cybersecurity risks to IT systems. The CIS community, which is a community of public and private security professionals, developed the CIS Microsoft Windows Server 2019 Benchmark through a consensus-based process.
The CIS Microsoft Windows Server 2019 Benchmark provides prescriptive guidance for securely configuring Windows Server 2019. This CIS Benchmark includes over 350 configuration recommendations specific to this OS. CIS updates the CIS Benchmark as threats evolve; updates can vary depending on the community as well as the major release schedule of the technology the CIS Benchmark supports. CIS Hardened Images® are patched monthly for vulnerabilities and any changes from the CIS Benchmark.
Using CIS Hardened Images for virtual machines, like Microsoft Windows Server 2019, is a great way to meet certain aspects of compliance frameworks, like PCI DSS or FedRAMP, that require organizations to establish and manage a secure configuration of IT assets deployed in the cloud. Oracle customers deploying in OCI can use this CIS Hardened Image as a way to reduce their overall cybersecurity threats for Microsoft Windows Server 2019 on OCI. For example, JD Edwards deployments on Microsoft Windows 2019 would benefit from the added security afforded by the CIS Hardened Image for Microsoft Windows Server 2019.
Oracle Cloud Marketplace offers other CIS Hardened Images such as Oracle Linux 6 and 7, CentOS Linux 6 and 7, and Ubuntu 16.04 and 18.04. CIS and Oracle Cloud are working together to bring more Microsoft Windows images to Oracle Cloud marketplace. At only $0.02 per virtual server hour, all of these images are a cost-effective way to reduce security threats.