Skip to content

Rulesets

Rulesets are collections of related rules grouped together for easier management and application. Aegis allows you to create, manage, and apply rulesets to ensure consistent policies using our unique "Policy as Prompt" approach. The rulesets can be used to enforce security standards, compliance requirements, and operational best practices across your infrastructure.

Overview

  • Organize rules by function, department, or compliance requirement.
  • Apply rulesets to resources or environments for consistent enforcement.

Example

# Ruleset for Kubernetes deployments on AWS in production
# Instruction: 
- Set resource requests and limits for CPU and memory to ensure fair scheduling and prevent resource exhaustion
- Use readiness and liveness probes to monitor application health and enable self-healing
- Use imagePullSecrets for pulling images from private registries
- Use labels for organization and service selectors
- Expose applications using Services (ClusterIP, NodePort, or LoadBalancer as needed)
- Avoid running containers as root; specify a non-root user if possible

Ensure the ruleset has the right labels to match the policy instruction, such as: 

platform=kubernetes, provider=aws, environment=production
resource=deployment

See Managing Policies for more details.

What is a Ruleset?

A ruleset is a logical grouping of rules that serve a common purpose or address a specific security domain. Rulesets allow you to:

  • Organize rules by security domain or compliance framework
  • Apply multiple rules simultaneously to resources
  • Manage rule versioning and lifecycle as a unit
  • Simplify policy management

Predefined Rulesets

Aegis comes with several predefined rulesets that address common security concerns:

Compliance Rulesets

  • CIS Ruleset: Rules aligned with the Center for Internet Security benchmarks
  • GDPR Ruleset: Rules that help maintain General Data Protection Regulation compliance
  • SOC 2 Ruleset: Rules aligned with SOC 2 trust criteria

Creating Custom Rulesets

You can create custom rulesets tailored to your organization's specific needs:

  1. Define the purpose and scope of the ruleset
  2. Select relevant rules to include
  3. Configure ruleset parameters
  4. Test the ruleset against your resources
  5. Deploy the ruleset through policies

Next Steps