CIS has created a proof-of-concept Python script that uses the AWS API to discover the latest CIS AMI offered in the AWS Marketplace for a named CIS Benchmark.
The CIS AMIs on AWS are updated for a number of reasons including updates to the corresponding CIS Benchmark, release of security patches, and bug fixes.
CIS takes cybersecurity seriously and makes these updates so the images used by your organization are hardened to the most recent security standards.
CIS Benchmark-hardened virtual images are a safe, secure way to save money on hardware purchasing and maintenance, allowing on-the-fly adjustments as CPU, memory, and storage needs shift. More secure than standard images, hardened virtual images reduce system vulnerabilities to help protect against denial of service, unauthorized data access, and other cyber threats.
Have questions? Learn more about the script before you download it in this blog post.