You can import policies directly to your account from our Compliance Policy Library.
The library includes policies that are based on popular compliance frameworks, including SOX, HIPAA, CoBIT and more.
Go to PC > Policies > New > Policy > Import from Library. Click on the policy you want and then click Next. Follow the wizard to give your policy a name and choose whether the policy should be locked or unlocked after import.
Tell me about locked policies
Our library includes locked policies for testing compliance against specific CIS benchmarks. These policies have been reviewed and certified by CIS (the Center for Internet Security). When a policy is locked, you can add hosts to the policy but you can't make any other edits. (Tip - During the import you'll have the option to import the locked policy as unlocked. This lets you remove the editing restrictions.)
You can edit the policy to change the assigned asset groups. If the policy is unlocked, you can also change the title, technologies, controls, etc. If the policy is locked, no other changes are allowed. You can, however, save a copy of any locked policy with a new name and edit it as needed.
You can also import a compliance policy from an XML file. Learn more