Consensus Audit Guidelines (CAG) Compliance /
SANS Top 20
Consensus Audit Guidelines (CAG) helps you prioritize your organization's most critical IT security concerns
Going one step further than FISMA, the SANS Institute's Consensus Audit Guidelines (CAG) is a critical part of U.S. federal agency security. Instead of focusing just on regular audits and rule fulfillment, Consensus Audit Guidelines (CAG) provides agencies with the tools they need to strategically prioritize the day-to-day IT security concerns they encounter. SANS's Top 20, otherwise known as the twenty Critical Security Controls (CSC), are mapped to FISMA controls, so it is standardized under SCAP, and is considered a key component of any robust federal agency security program.
Rapid7 solutions can help you achieve SANS top 20/Consensus Audit Guidelines (CAG) compliance by:
Applying Consensus Audit Guidelines (CAG)/SANS top 20 critical security controls
Use Nexpose and Metasploit to check your physical and virtual assets and make sure they comply with the consensus audit guidelines (CAG) CSCs. Find vulnerabilities and malware exposure with Nexpose. Enforce proper configurations and boundary defenses with penetration tests using Metasploit.
Free Product Downloads:
CAG Compliance Guide
Learn the requirements and steps in becoming CAG compliant
Nexpose Product Brief
Learn more about Nexpose for vulnerability management