Regulatory compliance

Wazuh helps implement compliance requirements for regulatory compliance support and visibility. This is done by providing automation, improved security controls, log analysis, and incident response.

The default Wazuh ruleset provides support for PCI DSS, HIPAA, NIST 800-53, TSC, and GDPR frameworks and standards. Wazuh rules and decoders are used to detect attacks, system errors, security misconfigurations, and policy violations. In addition to the default compliance frameworks and standards provided by Wazuh, it is possible to monitor for custom compliance standards by adding the compliance identifier in the <group> tag of rules. Refer to the Ruleset section for more information.

Learn more about achieving compliance with Wazuh in the sections below:

Using Wazuh for PCI DSS compliance
Using Wazuh for GDPR compliance
Using Wazuh for HIPAA compliance