icon/x Created with Sketch.

Splunk Cookie Policy

We use our own and third-party cookies to provide you with a great online experience. We also use these cookies to improve our products and services, support our marketing campaigns, and advertise to you on our website and other websites. Some cookies may continue to collect information after you have left our website. Learn more (including how to update your settings) here.
Accept Cookie Policy

We are working on something new...

A Fresh New Splunkbase
We are designing a New Splunkbase to improve search and discoverability of apps. Check out our new and improved features like Categories and Collections. New Splunkbase is currently in preview mode, as it is under active development. We welcome you to navigate New Splunkbase and give us feedback.
Splunkbase will be undergoing a scheduled migration and will be unavailable on Saturday, Oct 1, 2022, from 11AM to 3PM PDT

Accept License Agreements

This app is provided by a third party and your right to use the app is in accordance with the license provided by that third-party licensor. Splunk is not responsible for any third-party apps and does not provide any warranty or support. If you have any questions, complaints or claims with respect to this app, please contact the licensor directly.

Thank You

Downloading STIG Compliance
To install your download
For instructions specific to your download, click the Details tab after closing this window.

Flag As Inappropriate

splunk

STIG Compliance

Overview
Details
DISA’s Security Technical Implementation Guidelines (STIGs) are the most common configuration standard used by Government entities to ensure and demonstrate system security compliance. The process of implementing these configurations to a system can be complex and extraordinarily time consuming. In addition to remediating STIGs on all system components, you must be able to effectively report on and continuously monitor the compliance posture of your systems as they evolve over time. In a lot of cases, this process is managed with Excel spreadsheets and other tools that don’t allow you to get real insights into the data being captured in your compliance body of evidence. Worse yet, the manual nature of completing this work can be time consuming and very prone to human error.

KGI’s Atlas platform includes the STIG Compliance Application that is designed to assist with the entire process of putting systems into a compliant state, managing the compliance body of evidence, and reporting on the state of your system STIG compliance. This is accomplished by bringing your compliance data into the Atlas STIG Compliance App from your STIG checklists and vulnerability scanning systems. The Atlas STIG Compliance solution also includes an integration with Puppet that is capable of putting your RedHat systems into a compliant state and then sending real-time data about the current state of your systems over to Splunk. The makes the Atlas STIG Compliance a comprehensive solution that encompasses STIG Compliance reporting and remediation.

Key Features of Atlas STIG Compliance:
- Create and define systems that represent your environment or your accreditation boundaries.
- Visualize your compliance status at a system and system component level to better understand the quality of your systems.
- Automatically Ingests any STIG or SRG Checklist into Splunk.
- Track STIG Compliance posture over time to build an audit trail of your compliance activities.
- Easily update comments, finding details, status and more for your STIG Checklists within Splunk.
- Save time by bulk editing all of checklists at one time from the Splunk UI.
- Export your STIG Checklists from Splunk in the .ckl format so that they can be opened in the DISA STIG Viewer or imported into external systems.
- Allow teams to collaborate on STIG Compliance activities inside of the Splunk UI.
- Quickly audit your STIG checklists to identify checklists that have missing comments or finding details in your compliance body of evidence.
- Automatically identify discrepancies between your STIG Checklists and your vulnerability scans (SCAP and ACAS).
- Create custom POA&M reports that can be exported from Splunk.
- DISA STIG Templates are included in the App and are visible in the STIG Library feature

STIG Compliance is part of the Atlas Platform. Atlas is a premium solution requiring a paid license. Please contact Kinney Group to schedule a demo or request a quote.

STIG Compliance

Compliance with DISA STIGs is complex, time consuming and generally done in a manual way that is not repeatable. The Atlas STIG Compliance solution can provide automated STIG remediation capabilities along with a robust data collection and reporting capabiltity that can provide visibility into key data points that are imperative to completing successful compliance efforts. Users will be able to see compliance posture across all system elements, audit compliance data, and have robust STIG reporting capabilities all within the Splunk interface.

Learn more about the Atlas STIG Compliance App for Splunk

Create systems to model your environment within Splunk
System Overview

Create new systems within the Splunk UI without having to modify any underlying configuration
Create New System

View system level details to see the detailed compliance status of system components and associated STIG Checklists
System Details

View STIG Checklist details for each system component
STIG Viewer 1

STIG Viewer 2

View STIG Vulnerability history to see your status updates over time
Audit Trail

Update STIG Checklist data within the Splunk User Interface
Update STIGs

Raw STIG Templates are included in the App and available for review using the STIG Library Feature

Are you a developer?

As a Splunkbase app developer, you will have access to all Splunk development resources and receive a 10GB license to build an app that will help solve use cases for customers all over the world. Splunkbase has 1000+ apps from Splunk, our partners and our community. Find an app for most any data source and user need, or simply create your own with help from our developer portal.

Follow Us:
Splunk, Splunk>,Turn Data Into Doing, Data-to-Everything, and D2E are trademarks or registered trademarks of Splunk Inc. in the United States and other countries. All other brand names,product names,or trademarks belong to their respective owners.