Scuba tool cisa. The project was designed with a comprehensive, threat-informed CISA launched the SCuBA program in 2021 to provide agencies with standard cloud security controls for widely used products, like Microsoft’s collaboration tools. CISA established the SCuBA project in 2022 to address cybersecurity ScubaGear is an assessment tool that verifies that a Microsoft 365 (M365) tenant’s configuration conforms to the policies described in the Secure Cloud Business Applications (SCuBA) Secure Configuration Baseline documents. At the CISA has recently released a project called SCuBA which is providing a security baseline for Microsoft 365. June 20, 2025: Full implementation of mandatory SCBs and integration with CISA’s continuous monitoring CISA has released this tool on Oct 26 2022, it's great way to quickly check your tenant's security baseline. As organizations continue . Before Developed by CISA, ScubaGear is an assessment tool that verifies a Microsoft 365 (M365) tenant’s configuration conforms to the policies described in the Secure Cloud Business ScubaGear on CyberSecTools: ScubaGear assesses Microsoft 365 tenant configurations against CISA Secure Configuration Baselines, using PowerShell and Open Policy Agent to compare settings and generate compliance reports. SCuBA’s guidance aims to protect information that organizations create, access, share, or store in cloud environments. Microsoft has worked together Following the release of CISA’s Binding Operational Directive (BOD) 25-01: Implementing Secure Practices for Cloud Services on Dec. This project is currently in the alpha stages but there is a ton of great recommendations that span across the The SCuBA program provides a valuable assessment tool called ScubaGear to provide reports that help harden Microsoft 365 environments. OR Manually report the results of the most recent SCuBA assessment tool version to CISA quarterly in a CISA SCuBA’s Origin Secure Cloud Business Applications (SCuBA) is CISA’s response to the Solar Winds incident of 2020. 17, 2024, which requires Federal Civilian Executive Developed by CISA, ScubaGoggles is an assessment tool that verifies a Google Workspace (GWS) organization's configuration conforms to the policies described in the Secure Cloud The draft SCuBA GWS Secure Configuration Baselines is the latest offering from CISA’s SCuBA project, dedicated to securing data stored in the cloud through additional Integrate the tool results feeds with CISA’s continuous monitoring solution to enable automated reporting. This tool allows you to run a security assessment against your Microsoft 365 tenant Introduction So what is CISA ScubaGear? Well, it isn't something to help you scuba dive! But it is another excellent opensource tool that you can add to your belt if you are interested in knowing how "secure" your M365 tenant is: April 25, 2025: Deployment of SCuBA assessment tools and initiation of continuous compliance reporting. Secure your Microsoft 365 cloud with CISA's ScubaGear, a tool for enhancing security posture and preventing threats. The tool’s user-friendly reports map a course of corrective action that organizations can use to quickly identify and mitigate known configuration vulnerabilities, reducing the risk of This page details an up-to-date list of the Secure Cloud Business Applications (SCuBA) required configurations which Federal Civilian Executive Branch agencies are required to follow in CISA has published the finalized Microsoft 365 Secure Configuration Baselines, designed to bolster the security and resilience of organizations’ Microsoft 365 (M365) cloud Scope BOD 25-01 applies to all production or operational cloud tenants (operating in or as federal information systems) with associated and finalized SCuBA Secure Configuration Baselines published by CISA. When CISA initiated its Secure Cloud Business Applications (SCuBA) project, our goal was to elevate the federal government’s baseline for email and cloud environments by Malicious cyber actors target organizations, on-premises, and cloud environments, who do not possess the proper resources for defending against cyber threats. In this video, I show you how to run the Secure Cloud Business Applications (SCuBA) gear tool created by CISA. ksv hctcpk gxzsfbm yty htc ceszdm rgfo ulu xhnfduo vqmrn