The macOS Security Compliance Project: Jamf's foundation for IT compliance standards

What is the macOS Security Compliance Project (mSCP)?

How does Jamf use it to make IT compliance regulations easier to meet?

The mSCP provides a programmatic approach to generating IT compliance baselines.

It is a joint project between multiple IT security, defense and internet security standards agencies of the US government. It also includes NASA, DISA, and multiple educational labs across the country. The project uses a set of tested and validated controls for macOS and maps these controls against any security guide supported by the project, and Jamf uses this information to create customized compliance benchmarks for its customers.

Jamf’s compliance benchmarks allow our customers to establish comprehensive device security baselines through automated configurations consisting of:

• Policies
• Config profiles
• Scripts
• Extension attributes
• Smart Group settings

And more.

What IT compliance regulations can Jamf help your organization meet?

Each industry and region has its own regulations and best practices, and some overlap. Jamf provides pre-created materials for several well-known compliance baselines, such as CIS Benchmarks® Level 1 and Level 2, as well as many others, coming soon.

You might find that your organization would also benefit from using Jamf's blueprints to smooth processes and adhere to compliance standards.

How does Jamf build on the mSCP to streamline IT compliance?

Compliance baselines for macOS are built on output from the mSCP. Jamf Pro delivers seamless workflows for establishing these security baselines, and Jamf Protect monitors, enforces and validates them.

This way, Jamf enables organizations to establish and validate industry-standard security configurations across their managed computers.

The documentation covers everything from understanding cybersecurity frameworks like CIS Benchmarks® to step-by-step instructions for implementing, monitoring, and maintaining compliance baselines.

And because our baselines are based on the mSCP, when their standards change, our configurations change with them.

What are the benefits of an Apple-native IT compliance standards approach for compliance and security teams?

Mac computers are, by their very nature, more stable and efficient than other devices. Part of why IT admins love Apple is that the Mac has incredible built-in security and IT compliance features such as Gatekeeper and XProtect.

However, Apple admins need additional tools to secure their devices and apply the baselines outlined by the mSCP. And they need tools that were built specifically for Apple.

With them, IT can enforce powerful, flexible Apple-specific management and security measures without hampering Apple's excellent user experience.

Combining a world-class security and management solution with Apple's protocols ensures that company data, employee data and networks are protected.

Using security and compliance software that was built for other systems and then retrofitted for Mac means that the system will slow down, offer fewer options and will hamper the user experience.

Jamf's solutions are built for Apple from the ground up. We understand Apple, we understand how to manage Apple, and we know how to secure Apple -- without interrupting productivity.