STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to Tanium 7.x Application on TanOS Security Technical Implementation Guide

V-254887

CAT II (Medium)

The Tanium documentation identifying recognized and trusted IOC streams must be maintained.

Rule ID

SV-254887r960804_rule

STIG

Tanium 7.x Application on TanOS Security Technical Implementation Guide

Version

V2R2

CCIs

CCI-001414

Discussion

Using trusted and recognized IOC sources may detect and prevent systems from becoming compromised. An IOC stream is a series or stream of IOCs that are imported from a vendor based on a subscription service. An IOC stream can be downloaded manually or on a scheduled basis. The items in an IOC stream can be separately manipulated after they are imported.

Check Content

Consult with the Tanium System Administrator to determine if the Threat Response module is being used. If not, this is Not Applicable.

Review the documented list of IOC trusted stream sources.

If the site does use an external source for IOCs and the IOC trusted stream source is not documented, this is a finding.

Fix Text

Prepare and maintain documentation identifying the Threat Response trusted stream sources.