STIGs Search Compare About

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
Compare Versions

Resources

About
VPAT
DISA STIG Library

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

← Back to STIGs

Arctic Wolf CylanceON-PREM Security Technical Implementation Guide

Version

V1R1

Benchmark ID

AW_CylanceON-PREM_STIG

Total Checks

16

Tags

other

CAT I: 1CAT II: 14CAT III: 1

This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DOD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.

Export CKL Export CSV Export JSON

Checks (16)

V-272627LOWCylanceON-PREM must be configured to use a third-party identity provider.V-272628MEDIUMCylanceON-PREM must be configured to initiate a session timeout after 10 minutes of inactivity.V-272629HIGHCylanceON-PREM must be configured to use TLS 1.2 or higher.V-272630MEDIUMCylanceON-PREM must be configured to show the standard mandatory DOD Notice and Consent Banner before granting access to CylanceON-PREM.V-272631MEDIUMSession-only-based cookies must be enabled.V-272632MEDIUMCylanceON-PREM must be configured to support integration with a third-party Security Information and Event Management (SIEM) to support notifications.V-272633MEDIUMCylanceON-PREM must be configured with only one local Role to be used by the account of last resort in the event the authentication server is unavailable.V-272634MEDIUMCylanceON-PREM must be configured to send alerts via Simple Mail Transfer Protocol (SMTP).V-272635MEDIUMCylanceON-PREM must enforce that all files accessed are evaluated against the AI model for potential threats.V-272636MEDIUMCylanceON-PREM must be configured with only one local account to be used as the account of last resort in the event the authentication server is unavailable.V-272637MEDIUMCylanceON-PREM must be configured to use an external database if users exceed 30,000.V-272638MEDIUMCylanceON-PREM must disable all functions, ports, protocols and services not required.V-272639MEDIUMCylanceON-PREM must be configured with a DOD issued certificate (or another authorizing official [AO]-approved certificate).V-272640MEDIUMCylanceON-PREM must be running the latest release.V-272641MEDIUMCylanceON-PREM must be restarted every 30 days to invoke health checks.V-272642MEDIUMAll associated custom applications, including API endpoints, must be inventoried and managed.