Hardening adds a layer into your automation framework, that configures your operating systems and services.
It takes care of difficult settings, compliance guidelines, cryptography recommendations, and secure defaults.
The team behind dev-sec.io “Hardening Framework” programmed most of the benchmark into InSpec rules that make it easy to “test” compliance, ensuring that the rules have been applied on a server. Evgeny Zislis - Co-Founder & CTO of ProdOps
An excellent resource for automated hardening is a set of open source templates originally developed at Deutsche Telekom [...]. Jim Bird, co-founder and CTO of a major U.S.-based institutional trading service
It covers most of the required hardening checks based on multiple standards, which includes Ubuntu Security Features, NSA Guide to Secure Configuration, ArchLinux System Hardening and other. Security Automation with Ansible 2 by Akash Mahajan, Madhu Akula
Supported and regularly tested