Source URL: https://cloud.google.com/blog/products/chrome-enterprise/new-benchmarks-for-securing-chromeos-from-the-center-for-internet-security/
Source: Cloud Blog
Title: New benchmarks for securing ChromeOS from the Center for Internet Security
Feedly Summary: As the way people work continues to evolve, keeping security policies in place that protect organizations but give workers the ability to get things done, wherever work happens, is more important than ever. IT and security teams must aim to stay a step ahead of web-based security threats that come their organization’s way. To help, the Center for Internet Security (CIS) team has released the CIS Benchmark 1.0 for Google ChromeOS. This Benchmark offers independent recommendations on which ChromeOS policies to configure to help support organizations’ security and compliance needs. Thanks to ChromeOS being built with security at its core, in many cases, ChromeOS default settings are aligned with CIS recommendations.ChromeOS is secure by default, but we also pride ourselves on providing customizations for enterprises to allow ChromeOS to better fit the needs of their business. And with over 600 hundred policies available through ChromeOS device management, we put control in the hands of IT. The CIS guide is a helpful tool to help navigate policies more easily.Throughout the CIS guide you’ll notice that there are different designations for configuration profiles. Any labeled Level 1 (L1), are intended to be a starting baseline for many organizations. Level 2 (L2) profiles are recommended for deployments that require the highest level of security, but note that these settings could have a trade off on usability. We recommend looking at each setting and determining if it’s a good fit for your business.The benchmark is made up of four sections:Directory: The Directory section of the Google admin console and recommended policy configurations.Chrome: Details security policy recommendations for User & Browser settings, ChromeOS device settings and ChromeOS managed guest session settings.Apps: Security recommendations for application settings on ChromeOS devices.Rules: Contains settings that can help prevent data loss and protect your organization’s data.Organizations can use these benchmarks to optimize the best way to secure ChromeOS in their environment. Download the CIS Benchmark here.Note: This CIS Benchmark™ was created using a consensus review process, comprised of a global community of subject matter experts. The process combines real world experience with data-based information to create technology specific guidance to assist users to secure their environments. Consensus participants provide perspective from a diverse set of backgrounds including consulting, software development, audit and compliance, security research, operations, government, and legal.
AI Summary and Description: Yes
Summary: The text discusses the release of the CIS Benchmark 1.0 for Google ChromeOS, which provides organizations with recommended security policies and configurations to enhance their security posture and comply with security requirements. It emphasizes the importance of balancing security measures with usability for end-users.
Detailed Description:
The text highlights the critical need for organizations to implement effective security policies that safeguard their operations while empowering employees to work flexibly. Here are the major points outlined in the text:
– **Emerging Threat Landscape**: Organizations face continuous web-based security threats that necessitate proactive security policies.
– **CIS Benchmark Release**: The Center for Internet Security (CIS) has launched the CIS Benchmark 1.0 specifically for Google ChromeOS, providing independent recommendations for policy configurations.
– **ChromeOS Security Features**:
– ChromeOS is designed with security at its core, often aligning default settings with CIS recommendations.
– It offers over 600 customizable policies that empower IT departments to tailor security measures to their specific business needs.
– **Configuration Profiles**:
– The benchmark features two main levels of configuration:
– **Level 1 (L1)**: A baseline intended for general organizational use.
– **Level 2 (L2)**: Recommended for scenarios requiring higher security, although this may impact usability.
– **Sections of the Benchmark**:
– **Directory**: Recommendations for Google admin console policy configurations.
– **Chrome**: Security policies for user and browser settings, device settings, and guest sessions.
– **Apps**: Application security recommendations tailored for ChromeOS devices.
– **Rules**: Settings aimed at preventing data loss and protecting organizational data.
– **Consensus Review Process**: The benchmark was developed through a collaborative process involving subject matter experts from diverse backgrounds, ensuring well-rounded and applicable guidance.
Organizations can utilize this CIS Benchmark as a comprehensive resource to enhance the security of ChromeOS deployments and ensure a balance between robust security and user experience. Downloading the CIS Benchmark can assist teams in optimizing their security configurations.