Cisa scuba assessment tool Dec 18, 2024 · Automated Assessment: The SCuBA tool automates the process of checking M365 tenant configurations against CISA’s Secure Configuration Baselines. Organizations are urged to review these baselines and utilize the SCuBAGear tool. Following the release of CISA’s Binding Operational Directive (BOD) 25-01: Implementing Secure Practices for Cloud Services on Dec. ScubaGear is an assessment tool that verifies that a Microsoft 365 (M365) tenant’s configuration conforms to the policies described in the Secure Cloud Business Applications Secure Configuration Baseline documents. dhs. This tool decreases the effort required for agencies (or any organization) to assess their tenant configurations by producing a detailed as-is report to serve as a SCuBA Security Configuration Baselines and assessment tool for Google Workspace - GitHub - techfuzz/CISA-ScubaGoggles: SCuBA Security Configuration Baselines and assessment tool for Google Workspace Dec 18, 2024 · BOD 25-01 requires federal agencies to implement future updates to mandatory SCuBA policies, in line with timetables published on the required configurations website, to monitor for new cloud tenants after implementing the mandatory baselines, and to “identify and explain deviations in the output of the SCuBA assessment tools when reported to CISA”. Note: This documentation can be read using GitHub Pages. This project is currently in the alpha stages but there is a ton of great recommendations that span across the suite offerings like Azure AD, Exchange, Teams, Defender, OneDrive, SharePoint, and even Power Platform. It uses PowerShell to query M365 APIs for various configuration settings. The tool operates in three main steps: 1. 17, 2024, which requires Federal Civilian Executive Branch (FCEB) agencies to deploy SCuBA assessment tools for in-scope cloud tenants no later than Friday, April 25, 2025 and begin continuous reporting, agencies can use ScubaConnect to ensure their cloud Nov 13, 2024 · ScubaGear, a tool developed by the Cybersecurity and Infrastructure Security Agency (CISA) to automatically assess Microsoft 365 (M365) configurations for security gaps, hit a major milestone: more than 30,000 downloads since its debut in October 2022. 3. Implement all mandatory SCuBA policies effective as of this Directive’s issuance, as set forth in the CISA-managed Binding Operational Directive 25-01 Required Nov 28, 2022 · CISA has recently released a project called SCuBA which is providing a security baseline for Microsoft 365. CISA has made this tool and the baselines available to all agencies and private sector organizations seeking security improvements. SCuBA’s Origin. gov. 2. Dec 17, 2024 · Manually report the results of the most recent SCuBA assessment tool version to CISA quarterly in a CISA approved, machine-readable format, following CISA reporting instructions. Dec 12, 2023 · Today, CISA released the draft Secure Cloud Business Applications (SCuBA) Google Workspace (GWS) Secure Configuration Baselines and the associated assessment tool ScubaGoggles for public comment. Dec 21, 2023 · CISA thanks all whose input took this guidance from a series of best practices to actionable policies and made the SCuBAGear tool easier to use. Microsoft has worked together with CISA to produce and maintain the secure configuration baselines for ScubaGear as well as an accompanying PowerShell script tool to scan M365 environments. . In fact, downloads significantly increased with the recent release of ScubaGear version 1. Mar 31, 2025 · On December 12, 2023, CISA SCuBA published its first draft Google Workspace (GWS) Secure Configuration Baselines (SCBs) and the GWS assessment tool called Although BOD 25-01 only requires action by Federal Civilian Executive Branch agencies, CISA strongly recommends all stakeholders implement these policies and leverage CISA’s SCuBA assessment tool and the information on this page. ScubaGear is an assessment tool designed to verify the configuration of Microsoft 365 (M365) tenants against the Secure Cloud Business Applications (SCuBA) Security Configuration Baseline documents. ScubaGear is a no-cost assessment tool that verifies M365 tenant configuration alignment to the policies described in SCuBA’s secure configuration baselines. Secure Cloud Business Applications (SCuBA) is CISA’s response to the Solar Winds incident of 2020. For more information regarding this process, review the following and coordinate with CISA via cyberdirectives@mail. Doing so will reduce significant risk and enhance collective resilience across the cybersecurity community. For more information, read CISA’s blog and contact CISA’s Cybersecurity Shared Services Office for additional support. Oct 23, 2024 · The SCuBA program provides a valuable assessment tool called ScubaGear to provide reports that help harden Microsoft 365 environments. The project was designed with a comprehensive, threat -informed methodology to identify cloud visibility coverage gaps and requirements. Multi-Product Coverage: The tool can assess various M365 products, including Azure Active Directory, Exchange Online, OneDrive for Business, SharePoint Online, and Teams. 0 SCuBA Secure Configuration Baselines and assessment tool for Google Workspace - GitHub - cisagov/ScubaGoggles: SCuBA Secure Configuration Baselines and assessment tool for Google Workspace Dec 17, 2024 · Agencies shall identify and explain deviations in the output of the SCuBA assessment tools when reported to CISA. The draft baselines offer minimum viable security configurations for nine GWS services: Groups for Business, Google Calendar, Google Common Controls Mar 9, 2024 · Tools You Should Know: ScubaGear Developed by CISA, ScubaGear is an assessment tool that verifies a Microsoft 365 (M365) tenant’s configuration conforms to the policies described in the Secure Cloud Business Applications (SCuBA) Security Configuration Baseline documents. SCuBA provides guidance and capabilities for securing cloud business application Dec 21, 2023 · In support of our pilot efforts, CISA also released our assessment tool, ScubaGear, to help organizations rapidly assess their M365 services against CISA’s recommended policies. cisa. • The Cybersecurity Evaluation Tool (CSET) (CISA) • SCuBAGear (CISA) • The Untitled Goose Tool (CISA) • Decider (CISA) • Memory Forensic on Cloud (JPCERT/CC) Note: These open-source tools are highlighted and explained to assist with on-site investigation and remediation in cloud environments but are not all-encompassing. xsmktttihxdlirbttdzgzinpnkvilgvzuqkxjigiukux