CIS Center for Internet Security

Blog Post: Managing Your Cybersecurity Program for the Win

See all the latest

Alert Level: GUARDED

Low

Guarded

Elevated

High

Severe

Learn More

Assess. Remediate. Implement. Save.

Improve your cybersecurity program and save up to 20% on a new CIS SecureSuite Membership from now until April 30.

Promo Terms

Apply Now

CIS harnesses the power of a global IT community to safeguard public and private organizations against cyber threats.

Join MS-ISAC

Join EI-ISAC

Stay up to date on the Microsoft Exchange Zero-Day vulnerability response.
Learn More

Assess. Remediate. Implement. Save.

Improve your cybersecurity program and save up to 20% on a new CIS SecureSuite Membership from now until April 30.

Promo Terms

Apply Now

CIS harnesses the power of a global IT community to safeguard public and private organizations against cyber threats.

Join MS-ISAC

Join EI-ISAC

Stay up to date on the Microsoft Exchange Zero-Day vulnerability response.
Learn More

Start Secure, Stay Secure

A CIS SecureSuite Membership combines the CIS Benchmarks, CIS Controls, and CIS-CAT Pro into one powerful cybersecurity resource for businesses, nonprofits, and governmental entities.

Join Now

Consensus-developed secure configuration guidelines for hardening.

Download

Develop and update secure configuration guidelines for 25+ technology families.

Join a Community

Prescriptive, prioritized, and simplified set of cybersecurity best practices.

Download

Refine and verify best practices, related guidance, and mappings.

Join a Community

Learn More

Start Secure. Stay Secure.^®

Membership combines and automates the CIS Benchmarks, CIS Controls, and CIS-CAT Pro into a powerful and time-saving cybersecurity resource.

CIS-CAT Pro enables users to assess conformance to best practices and improve compliance scores over time.

“It is the most important membership for the compliance review of information security available in the market today.”

— Senior Manager, Information Security & Compliance International Public Service & Communications Agency

Consensus-based Guidelines

CIS Benchmarks and CIS Controls are consensus-based guides curated by security practitioners focused on performance, not profit.

Objective Standards

Our security best practices are referenced global standards verified by an objective, volunteer community of cyber experts.

Secure Online Experience

CIS is an independent, non-profit organization with a mission to provide a secure online experience for all.

Information Hub

What's New

Advisory • 21 Apr 2021

Multiple Vulnerabilities in SonicWall Email Security Could Allow for Arbitrary Code Execution

Advisory • 20 Apr 2021

Multiple Vulnerabilities in Mozilla Firefox and Thunderbird Could Allow for Arbitrary Code Execution

Blog post • 19 Apr 2021

Managing Your Cybersecurity Program for the Win

Webinar • 19 Apr 2021

Securing Your Cloud Infrastructure with CIS Controls v8

Blog post • 15 Apr 2021

Remote Attestation Enabling Posture Assessment for Automated GRC

Newsletter • 15 Apr 2021

Don’t Be Frivolous With Your Stimulus

Daily tip

Know the Rules of Cyber Ethics

"Cyber ethics" refers to the code of responsible behavior on the Internet. Just as we are taught to act responsibly in everyday life with lessons such as "Don't take what doesn't belong to you" and "Do not harm others," we must act responsibly in the cyber world as well. The basic rule is "Do not do something in cyberspace that you would consider wrong or illegal in everyday life." Click for more considerations.

Center for Internet Security®