This document discusses security baselines and tools for implementing them. It defines baselines as security configurations and standards and outlines Microsoft security baselines as well as external sources like CIS and STIG. It also introduces the Security Compliance Toolkit and Policy Analyzer tools for analyzing baselines and demonstrates using the LGPO Tool and Policy Analyzer. Finally, it covers best practices for hardening endpoints and classifying changes by impact level and demonstrates implementing a baseline using Policy Analyzer.