7MS #359: Windows 10 Security Baselining

This episode is brought to you by ITProTV. Visit https://www.itpro.tv/7minsec for over 65 hours of IT training for free!

In this episode I explore some ways you can turn up the security heat on your Windows workstations by mapping their security to a hardening standard and/or baseline. Specifically, I cover:

• NIST STIG for Windows 10
• Heimdal Security - Windows 10 Hardening Guide
• Center for Internet Security's security benchmarks
• Windows Security Compliance Toolkit (SCT)

I think one path to success is to use the Windows SCT as a way to create a baseline, and then use it - plus some of the other guides and standards - to gradually turn the security screws on the OS. Don't just import a GPO template and turn on 123,456,789 settings at once. You'll likely bring the network to its knees!

Got a better/faster/stronger way to accomplish baselining? Let me know!