CIS Controls

What Is CIS Controls?

CIS Controls are a set of best practices developed by the Center for Internet Security (CIS) to help organizations protect their networks and data from cyber threats. The CIS Controls are divided into 20 categories, each of which contains specific security measures that organizations can implement to reduce their risk of a cyber attack. The controls are designed to be used in conjunction with other security measures, such as firewalls, antivirus software, and user education. The CIS Controls are regularly updated to reflect the latest security threats and best practices.

Description

CIS Controls are a set of best practices developed by the Center for Internet Security (CIS) to help organizations protect their networks and data from cyber threats.

Usage and Examples

Organizations can use the CIS Controls to reduce their risk of a cyber attack. For example, the first control recommends that organizations use a secure configuration for their systems and applications. This includes setting strong passwords, disabling unnecessary services, and patching software regularly. The second control recommends that organizations use access control measures, such as Two-Factor Authentication, to limit access to sensitive data. The third control recommends that organizations use network segmentation to limit the spread of malware and other malicious activity. By following the CIS Controls, organizations can reduce their risk of a cyber attack and protect their networks and data.

Previous term
No previous terms!
Next term
No next terms!
Ready to find more vulnerabilities than your last pentest?
Unlock your organization's full security potential and uncover even more vulnerabilities than before by choosing our advanced penetration testing services.