https://docs.kertos.io/articles/4316819121-glossary https://docs.kertos.io/articles/2429105787-support-and-bug-reporting https://docs.kertos.io/articles/8302814403-task-management-explained https://docs.kertos.io/articles/7906946329-creating-tasks https://docs.kertos.io/articles/9115868508-task-notifications https://docs.kertos.io/articles/5458703503-permissions https://docs.kertos.io/articles/7542821217-access-management-explained https://docs.kertos.io/articles/1404953295-inviting-users https://docs.kertos.io/articles/1511356675-creating-roles https://docs.kertos.io/articles/4382919453-assigning-system-access https://docs.kertos.io/articles/8069253848-adding-departments https://docs.kertos.io/articles/8522898653-setting-review-periods https://docs.kertos.io/articles/2375879943-discovery-explained https://docs.kertos.io/articles/2527193153-website-scan https://docs.kertos.io/articles/9585787311-sso-scan https://docs.kertos.io/articles/7245503794-cloud-scan https://docs.kertos.io/articles/6135613125-discovery-setup-gcp https://docs.kertos.io/articles/8740195173-discovery-setup-azure https://docs.kertos.io/articles/4589052181-setting-up-the-aws-integration-to-enable-discovery-run-auto-checks https://docs.kertos.io/articles/9461645702-kertos-slack-app-compliance-notifications-in-slack https://docs.kertos.io/articles/4481789432-syncing-tasks-with-jira https://docs.kertos.io/articles/7749904775-discovery-setup-intune https://docs.kertos.io/articles/6145569246-hardware-compliance-score-sync https://docs.kertos.io/articles/2145284261-kertos-device-monitor https://docs.kertos.io/articles/3346618335-syncing-employee-data-with-personio https://docs.kertos.io/articles/2284369954-slack https://docs.kertos.io/articles/4479789240-vendors https://docs.kertos.io/articles/7719034191-systems https://docs.kertos.io/articles/7213051082-assets https://docs.kertos.io/articles/8652606229-ai-inventory https://docs.kertos.io/articles/5558908139-managing-risks https://docs.kertos.io/articles/4143759872-trust-center-setup https://docs.kertos.io/articles/8241723043-incident-management https://docs.kertos.io/articles/2146576412-interacting-with-kaia https://docs.kertos.io/articles/7760559678-kaia-autofill https://docs.kertos.io/articles/5509808249-chatbot https://docs.kertos.io/articles/8206677140-context-awareness https://docs.kertos.io/articles/3837680637-policy-co-pilot https://docs.kertos.io/articles/9007361920-kaia-documentation https://docs.kertos.io/articles/9928107177-principles-of-ai https://docs.kertos.io/articles/2035952470-frameworks https://docs.kertos.io/articles/5691429410-controls https://docs.kertos.io/articles/6623910513-policies https://docs.kertos.io/articles/1660245019-trainings https://docs.kertos.io/articles/3427782127-guidance https://docs.kertos.io/articles/3737930558-determining-control-applicability https://docs.kertos.io/articles/4594877549-data-subject-requests https://docs.kertos.io/articles/2988201938-request-automation https://docs.kertos.io/articles/6746785618-creating-dsrs https://docs.kertos.io/articles/3533367360-fulfilling-dsrs https://docs.kertos.io/articles/6633252937-notifying-ds https://docs.kertos.io/articles/2424473353-webhook-automation-explained https://docs.kertos.io/articles/6719033121-ropa https://docs.kertos.io/articles/3845964726-creating-toms https://docs.kertos.io/articles/4782173598-dpia https://docs.kertos.io/articles/5596621317-ingress-api-docs-for-dsr https://docs.kertos.io/articles/5934788186-webhook-api-docs-for-dsrs https://docs.kertos.io/articles/3432194060-enforce-mfa-on-the-aws-root-account https://docs.kertos.io/articles/3833333009-verify-cloudtrail-is-logging-management-events-across-all-aws-regions https://docs.kertos.io/articles/3128143570-ensure-no-iam-aws-managed-policies-grant-full-administrative-access https://docs.kertos.io/articles/8707600829-confirm-that-amazon-guardduty-is-enabled-for-threat-detection https://docs.kertos.io/articles/7923721034-ensure-the-root-account-does-not-have-any-active-access-keys https://docs.kertos.io/articles/2772010702-confirm-iam-access-analyzer-is-enabled-to-monitor-access-permissions https://docs.kertos.io/articles/5451157177-configure-a-log-metric-filter-and-alarm-for-unauthorized-api-calls https://docs.kertos.io/articles/3347314710-configure-a-log-metric-filter-and-alarm-for-root-account-usage https://docs.kertos.io/articles/3135893020-ensure-customer-managed-iam-policies-do-not-grant-full-administrative-access https://docs.kertos.io/articles/2521150728-prevent-iam-identities-from-having-inline-policies-with-unrestricted-access https://docs.kertos.io/articles/7350748328-block-iam-inline-policies-that-enable-privilege-escalation https://docs.kertos.io/articles/4843715666-avoid-full-kms-access-in-inline-iam-policies https://docs.kertos.io/articles/5134821856-prevent-iam-inline-policies-from-granting-full-cloudtrail-access https://docs.kertos.io/articles/2742884376-prevent-overly-permissive-role-assumption-in-custom-iam-policies https://docs.kertos.io/articles/2530742813-prevent-privilege-escalation-via-customer-managed-iam-policies https://docs.kertos.io/articles/7445007838-avoid-iam-policies-granting-full-cloudtrail-access https://docs.kertos.io/articles/4747145700-avoid-iam-policies-granting-unrestricted-kms-access https://docs.kertos.io/articles/6687720649-prevent-iam-roles-from-assigning-readonlyaccess-permissions-to-external-aws-accounts https://docs.kertos.io/articles/6613636201-protect-iam-service-roles-from-confused-deputy-attacks-using-proper-trust-policies https://docs.kertos.io/articles/6284620606-avoid-provisioning-access-keys-during-initial-iam-user-creation-when-console-login-is-enabled https://docs.kertos.io/articles/2377200443-detect-iam-users-with-multiple-active-access-keys-and-enforce-key-rotation https://docs.kertos.io/articles/5674418614-verify-that-server-parameter-log-retention-days-is-greater-than-3-days-for-postgresql-database-server https://docs.kertos.io/articles/5546407469-verify-that-server-parameter-connection-throttling-is-set-to-on-for-postgresql-database-server https://docs.kertos.io/articles/5226983269-verify-that-server-parameter-log-disconnections-is-set-to-on-for-postgresql-database-server https://docs.kertos.io/articles/6902358112-verify-that-server-parameter-log-connections-is-set-to-on-for-postgresql-database-server https://docs.kertos.io/articles/1927903389-verify-that-enforce-ssl-connection-is-set-to-enabled-for-postgresql-database-server https://docs.kertos.io/articles/3670755896-verify-that-server-parameter-log-checkpoints-is-set-to-on-for-postgresql-database-server https://docs.kertos.io/articles/2190041486-verify-that-activity-log-alert-exists-for-create-policy-assignment https://docs.kertos.io/articles/2286239085-verify-that-no-azure-sql-databases-allow-ingress-from-0000-0-any-ip https://docs.kertos.io/articles/2102038688-verify-that-activity-log-alert-exists-for-create-or-update-public-ip-address-rule https://docs.kertos.io/articles/9726569576-verify-that-activity-log-alert-exists-for-delete-sql-server-firewall-rule https://docs.kertos.io/articles/6950819145-verify-that-activity-log-alert-exists-for-create-or-update-sql-server-firewall-rule https://docs.kertos.io/articles/3640174212-verify-that-activity-log-alert-exists-for-delete-network-security-group https://docs.kertos.io/articles/6680491987-verify-that-the-storage-account-containing-the-container-with-activity-logs-is-encrypted-with-customer-managed-key https://docs.kertos.io/articles/3111153983-verify-that-activity-log-alert-exists-for-delete-policy-assignment https://docs.kertos.io/articles/7239217412-verify-that-activity-log-alert-exists-for-create-or-update-network-security-group https://docs.kertos.io/articles/3964380159-verify-that-diagnostic-setting-captures-appropriate-categories https://docs.kertos.io/articles/3242691330-verify-that-activity-log-alert-exists-for-create-or-update-security-solution https://docs.kertos.io/articles/7308898865-verify-that-activity-log-alert-exists-for-delete-public-ip-address-rule https://docs.kertos.io/articles/9977854348-verify-that-logging-for-azure-appservice-http-logs-is-enabled https://docs.kertos.io/articles/3729067736-verify-that-logging-for-azure-key-vault-is-enabled https://docs.kertos.io/articles/9789452175-verify-that-the-expiration-date-is-set-for-all-keys-in-rbac-key-vaults https://docs.kertos.io/articles/2305151188-enable-role-based-access-control-for-azure-key-vault https://docs.kertos.io/articles/6729549466-verify-that-private-endpoints-are-used-for-azure-key-vault https://docs.kertos.io/articles/8411612994-verify-that-the-key-vault-is-recoverable https://docs.kertos.io/articles/8597154138-verify-that-https-access-from-the-internet-is-evaluated-and-restricted https://docs.kertos.io/articles/9648919396-verify-that-ssh-access-from-the-internet-is-evaluated-and-restricted https://docs.kertos.io/articles/7784842169-verify-that-network-watcher-is-enabled-for-all-locations-in-the-azure-subscription https://docs.kertos.io/articles/7956749095-verify-that-rdp-access-from-the-internet-is-evaluated-and-restricted https://docs.kertos.io/articles/7142217185-verify-that-that-firewalls-networks-is-limited-to-use-selected-networks-instead-of-all-networks https://docs.kertos.io/articles/4311295718-verify-that-that-private-endpoints-are-used-where-possible https://docs.kertos.io/articles/9761026578-verify-that-enforce-ssl-connection-is-set-to-enabled-for-standard-mysql-database-server https://docs.kertos.io/articles/2188016137-verify-that-tls-version-is-set-to-tlsv12-for-mysql-flexible-database-server https://docs.kertos.io/articles/3422846084-verify-that-sql-servers-transparent-data-encryption-tde-protector-is-encrypted https://docs.kertos.io/articles/5468699197-verify-that-auditing-retention-is-greater-than-90-days https://docs.kertos.io/articles/6763736865-verify-that-application-insights-are-configured https://docs.kertos.io/articles/9223198514-verify-that-restrict-non-admin-users-from-creating-tenants-is-set-to-yes https://docs.kertos.io/articles/6960728683-verify-that-guest-invite-restrictions-is-set-to-only-users-assigned-to-specific-admin-roles-can-invite-guest-users https://docs.kertos.io/articles/1545692112-verify-that-that-guest-users-access-restrictions-is-set-to-guest-user-access-is-restricted-to-properties-and-memberships-of-their-own-directory-objects https://docs.kertos.io/articles/6208781211-ensure-microsoft-defender-for-open-source-relational-databases-is-enabled https://docs.kertos.io/articles/8691811849-verify-that-that-microsoft-defender-for-app-services-is-set-to-on https://docs.kertos.io/articles/9764881024-verify-that-that-notify-about-alerts-with-the-following-severity-is-set-to-high https://docs.kertos.io/articles/1060783045-verify-that-additional-email-addresses-is-configured-with-a-security-contact-email https://docs.kertos.io/articles/6330164564-verify-that-that-microsoft-defender-for-sql-servers-on-machines-is-set-to-on https://docs.kertos.io/articles/1126441023-verify-that-that-all-users-with-the-following-roles-is-set-to-owner https://docs.kertos.io/articles/8292555364-verify-that-that-microsoft-defender-for-storage-is-set-to-on https://docs.kertos.io/articles/2511456824-verify-that-microsoft-defender-for-iot-hub-is-set-to-on https://docs.kertos.io/articles/3518769682-verify-that-microsoft-defender-for-containers-is-set-to-on https://docs.kertos.io/articles/8374119162-verify-that-that-users-can-register-applications-is-set-to-no https://docs.kertos.io/articles/7122239418-verify-that-an-expiration-date-is-set-for-all-keys-in-rbac-enabled-azure-key-vaults https://docs.kertos.io/articles/8364641544-verify-that-an-activity-log-alert-exists-for-create-or-update-security-solution https://docs.kertos.io/articles/7699447145-verify-that-allow-access-to-azure-services-for-postgresql-database-server-is-disabled https://docs.kertos.io/articles/7461037082-ensure-vulnerability-scanning-is-enabled-for-repository-dependencies https://docs.kertos.io/articles/4742957267-ensure-a-codeowners-file-exists-in-the-repository https://docs.kertos.io/articles/4561050737-ensure-inactive-repositories-are-archived https://docs.kertos.io/articles/6951551322-ensure-public-repositories-include-a-securitymd-file https://docs.kertos.io/articles/1416247687-auto-checks-explained https://docs.kertos.io/articles/7087474840-auto-checks-aws https://docs.kertos.io/articles/4160199067-auto-checks-azure https://docs.kertos.io/articles/8757099966-auto-checks-gcp https://docs.kertos.io/articles/9850432867-auto-checks-github https://docs.kertos.io/articles/3826867907-auto-checks-integration-guide-for-azure https://docs.kertos.io/articles/5524363046-auto-checks-integration-guide-for-gcp https://docs.kertos.io/articles/3258206103-enabling-auto-checks-by-reconfiguring-the-aws-integration https://docs.kertos.io/articles/7893217574-profile-settings https://docs.kertos.io/articles/3444902089-2fa-login https://docs.kertos.io/articles/2812885925-company-settings https://docs.kertos.io/articles/3195174156-legal-entities-settings https://docs.kertos.io/articles/4897640427-platform-settings https://docs.kertos.io/articles/3686757608-outbound-e-mail-settings