https://www.vmware.com/resources/certifications/stigs
STIGs are proscriptive, detailed, and comprehensive hardening guides for US Department of Defense (DOD) systems, based on DOD and NIST requirements.
technical implementationsecurityguidesstigsvmware