STIGS are configuration standards for DoD IA and IA-enabled devices/systems.

STIGs are the configuration standards DoD uses to securely set up IA and IA-enabled devices and systems. STIGs, or Security Technical Implementation Guides, provide detailed, platform-specific requirements and checklists that harden systems—covering things like password policies, account controls, auditing, service configurations, patching, and encryption. The goal is to establish a consistent secure baseline across all DoD hardware and software, so assessments can systematically verify compliance against these standards as part of the risk management and authorization process. They aren’t about international financial data standards, public cloud guidelines, or medical device data guidelines, which is why they fit squarely as the DoD's configuration standards for IA and IA-enabled devices.