STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 6 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Tanium 7.0 Security Technical Implementation Guide

V-241022

CAT II (Medium)

The Tanium documentation identifying recognized and trusted IOC Detect streams must be maintained.

Rule ID

SV-241022r960804_rule

STIG

Tanium 7.0 Security Technical Implementation Guide

Version

V1R3

CCIs

CCI-001414

Discussion

An IOC stream is a series or "stream" of IOCs that are imported from a vendor based on a subscription service. An IOC stream can be downloaded manually or on a scheduled basis. The items in an IOC stream can be separately manipulated after they are imported.

Check Content

Consult with the Tanium System Administrator to determine if the "Tanium Detect" module is being used. If it is not, this is "Not Applicable".

Review the documented list of IOC trusted stream sources.

If the site does use an external source for IOCs and the IOC trusted stream source is not documented, this is a finding.

Fix Text

Consult with the Tanium System Administrator to determine if the "Tanium Detect" module is being used. If it is not, this is "Not Applicable".

Prepare and maintain documentation identifying the Tanium IOC trusted stream sources.