Pencil Blog Post: CIS Benchmarks March 2021 Update Arrow See all the latest Arrow

Consensus-developed secure configuration guidelines for hardening.

Develop and update secure configuration guidelines for 25+ technology families.

Prescriptive, prioritized, and simplified set of cybersecurity best practices.

Refine and verify best practices, related guidance, and mappings.

Start Secure. Stay Secure.®

Membership combines and automates the CIS Benchmarks, CIS Controls, and CIS-CAT Pro into a powerful and time-saving cybersecurity resource.


CIS-CAT Pro enables users to assess conformance to best practices and improve compliance scores over time.

“It is the most important membership for the compliance review of information security available in the market today.”
— Senior Manager, Information Security & Compliance International Public Service & Communications Agency

Consensus-based Guidelines

CIS Benchmarks and CIS Controls are consensus-based guides curated by security practitioners focused on performance, not profit.

Objective Standards

Our security best practices are referenced global standards verified by an objective, volunteer community of cyber experts.

Secure Online Experience

CIS is an independent, non-profit organization with a mission to provide a secure online experience for all.

Information Hub

What's New
CONTROL: 1 --- ADVISORY CONTROL: 0
CONTROL: 2 --- ADVISORY CONTROL: 1

Blog post 03 Mar 2021
CONTROL: 3 --- ADVISORY CONTROL: 1
CONTROL: 4 --- ADVISORY CONTROL: 2
CONTROL: 5 --- ADVISORY CONTROL: 2
CONTROL: 6 --- ADVISORY CONTROL: 2
CONTROL: 6 --- ADVISORY CONTROL: 2
Daily tip

Protect Yourself When Using Cloud Services

In simplest terms, cloud computing is a subscription-based or free service where you can obtain networked storage space and other computer resources through an Internet access. While these systems may remove the need for owning physical components, they also introduce new risks to your information. Before you float your digital assets to the cloud, make sure you take the appropriate steps to protect yourself:

  • Know your needs and read the contracts
  • Protect your machine and your data