CIS Center for Internet Security

Blog Post: Future of Cloud Security: Thoughts from AWS Public Sector Summit

See all the latest

Alert Level: GUARDED

Low

Guarded

Elevated

High

Severe

Learn More

CIS Controls™ Assessment Module

Conduct assessments against CIS Controls V7.1 Implementation Group 1 for Windows 10!

Controls Background Image

CIS harnesses the power of a global IT community to safeguard public and private organizations against cyber threats.

Join MS-ISAC

Join EI-ISAC

The MS-ISAC® & EI-ISAC® are focal points for cyber threat prevention, protection, response, & recovery for U.S. State, Local, Tribal, & Territorial government entities. CIS is home to the MS-ISAC & EI-ISAC.

CIS Controls™ Assessment Module

Conduct assessments against CIS Controls V7.1 Implementation Group 1 for Windows 10!

Controls Background Image

Start Secure, Stay Secure

A CIS SecureSuite Membership combines the CIS Benchmarks, CIS Controls, and CIS-CAT Pro into one powerful cybersecurity resource for businesses, nonprofits, and governmental entities.

Join Now

Robust automated configuration assessment tool rapidly identifies vulnerabilities with coverage for 80+ CIS Benchmarks.

Learn More

Proven CIS Benchmarks guidelines to protect over 100 distinct systems & platforms.

Download

20 prioritized actions to beat the vast majority of the most common attacks.

Download

Learn More

Start Secure, Stay Secure A CIS SecureSuite Membership combines and automates the CIS Benchmarks, CIS Controls, and CIS-CAT Pro into one powerful, time-saving cybersecurity resource for businesses, nonprofits, and governmental entities.

Leverage remediation content for rapid CIS Benchmark implementation
Connect with CIS staff and developers for technical support

“It is the most important membership for the compliance review of information security available in the market today.”

— Senior Manager, Information Security & Compliance International Public Service & Communications Agency

Consensus-based Guidelines

CIS Benchmarks and CIS Controls are consensus-based guides curated by security practitioners focused on performance, not profit.

Objective Standards

Our security best practices are referenced global standards verified by an objective, volunteer community of cyber experts.

Secure Online Experience

CIS is an independent, non-profit organization with a mission to provide a secure online experience for all.

Information Hub

What's New

Blog post • 14 Jun 2019

Future of Cloud Security: Thoughts from AWS Public Sector Summit

Advisory • 14 Jun 2019

Multiple Vulnerabilities in Mozilla Thunderbird Could Allow for Arbitrary Code Execution

Blog post • 13 Jun 2019

I Joined the EI-ISAC® – Now What?

Blog post • 11 Jun 2019

Simplifying the Path to Cloud Security Compliance with ATO on AWS

Advisory • 11 Jun 2019

Critical Patches Issued for Microsoft Products, June 11, 2019

White paper • 10 Jun 2019

2018 Year in Review

Daily tip

Know the Rules of Cyber Ethics

"Cyber ethics" refers to the code of responsible behavior on the Internet. Just as we are taught to act responsibly in everyday life with lessons such as "Don't take what doesn't belong to you" and "Do not harm others," we must act responsibly in the cyber world as well. The basic rule is "Do not do something in cyberspace that you would consider wrong or illegal in everyday life." Click for more considerations.

Center for Internet Security®