The Center for Internet Security, Inc. (CIS) is a 501c3 nonprofit organization focused on enhancing the cybersecurity readiness and response of public and private sector entities.

CIS and the Council on CyberSecurity have recently joined together to maximize their synergies into a single nonprofit organization that builds on the solid foundation already established by the two. The respective programs will continue to operate through the newly integrated organization, which will be known as the Center for Internet Security.

Making Best Practice Common Practice

Daily Cyber Tip: Don't Be a Victim of Cyber Crime!: The term "cybercrime" is usually referred to as any criminal offense committed against or with the use of a computer... read more
Critical Security Controls

The Critical Security Controls are a set of recommendations for cyber defense that provide specific and actionable ways to stop today's most pervasive attacks.

They were developed and are maintained by a large volunteer community of security experts to provide the most important and effective practices for any organization

Security Benchmarks

CIS develops and distributes consensus-based solutions that help organizations improve their cyber security and compliance posture. Resources include secure configuration benchmarks, automated configuration assessment tools and content, and security software product certifications.


The MS-ISAC is the focal point for cyber threat prevention, protection, response and recovery for the nation's state, local, tribal and territorial (SLTT) governments.

Integrated Intelligence Center

The Integrated Intelligence Center facilitates trusted relationships with government and private sector entities. The IIC's mission is to develop and disseminate comprehensive, coordinated intelligence that helps improve the security posture of all its partners.

Workforce Development

CIS is committed to the development of the cyber security workforce and supporting its evolution as a profession.

This includes the ongoing refinement of cybersecurity roles at the individual level, workforce management at the enterprise level, as well as identifying, attracting, and recruiting the next generation of cybersecurity experts.

Trusted Purchasing Alliance

The Trusted Purchasing Alliance serves state, local, tribal and territorial (SLTT) governments and related not-for-profit entities in achieving a greater cyber security posture through trusted expert guidance and cost-effective procurement.