Defense & Operations
Security Baseline
Also known as: Security configuration baseline, Hardening baseline
Definition
A documented, minimum-acceptable security configuration that all systems of a given type must meet before being placed into production.
Examples
- A Windows 11 corporate baseline aligned with the CIS Level 1 Benchmark.
- A baseline for AWS accounts requiring CloudTrail, GuardDuty, MFA root, and SCP guardrails.
Related terms
System Hardening
Reducing the attack surface of a system by removing unnecessary features, tightening configurations, and enforcing secure defaults.
Configuration Management
The discipline of establishing, recording, and enforcing the desired state of systems and applications so configurations remain known, consistent, and secure.
Security Controls
Safeguards or countermeasures — technical, administrative, or physical — used to prevent, detect, or respond to threats against information assets.
CIS Controls
A prioritized set of best-practice cybersecurity safeguards maintained by the Center for Internet Security to defend against the most common cyberattacks.
Compliance
The discipline of meeting legal, regulatory, contractual, and internal security requirements through documented controls, evidence collection, and ongoing assessment.
Security Posture
Security Posture — definition coming soon.