STIGQter: STIG Summary: Tanium 7.0 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 27 July 2018:

The Tanium documentation identifying recognized and trusted folders for IOC Detect Folder streams must be maintained.

DISA Rule

SV-93437r1_rule

Vulnerability Number

V-78731

Group Title

SRG-APP-000039

Rule Version

TANS-SV-000048

Severity

CAT II

CCI(s)

• CCI-001414 - The information system enforces approved authorizations for controlling the flow of information between interconnected systems based on organization-defined information flow control policies.

Weight

10

Fix Recommendation

Prepare and maintain documentation identifying the Tanium IOC Folder stream maintainers.

Check Contents

Consult with the Tanium System Administrator to review the documented list of folder maintainers for IOC Detect Folder streams.

If the site does not leverage Folder streams to import IOCs, this finding is "Not Applicable".

If the site does use Folder streams to import IOCs and the folder maintainers are not documented, this is a finding.

Vulnerability Number

V-78731

Documentable

False

Rule Version

TANS-SV-000048

Severity Override Guidance

Consult with the Tanium System Administrator to review the documented list of folder maintainers for IOC Detect Folder streams.

If the site does not leverage Folder streams to import IOCs, this finding is "Not Applicable".

If the site does use Folder streams to import IOCs and the folder maintainers are not documented, this is a finding.

Check Content Reference

M

Target Key

3215

Comments