CIS Center for Internet Security

Blog Post: 20 Years of Creating Confidence in the Connected World

See all the latest

Alert Level: GUARDED

Low

Guarded

Elevated

High

Severe

Learn More

SolarWinds Cyber-Attack: What SLTTs Need to Know

Dedicated resources and a detailed, tiered set of guidance that organizations can take based on their specific capabilities and cybersecurity maturity.

Learn More

CIS harnesses the power of a global IT community to safeguard public and private organizations against cyber threats.

Join MS-ISAC

Join EI-ISAC

The MS-ISAC & EI-ISAC are focal points for cyber threat prevention, protection, response, & recovery for U.S. State, Local, Tribal, & Territorial government entities. CIS is the home of the MS-ISAC and EI-ISAC.

SolarWinds Cyber-Attack: What SLTTs Need to Know

Dedicated resources and a detailed, tiered set of guidance that organizations can take based on their specific capabilities and cybersecurity maturity.

Learn More

CIS harnesses the power of a global IT community to safeguard public and private organizations against cyber threats.

Join MS-ISAC

Join EI-ISAC

Start Secure, Stay Secure

A CIS SecureSuite Membership combines the CIS Benchmarks, CIS Controls, and CIS-CAT Pro into one powerful cybersecurity resource for businesses, nonprofits, and governmental entities.

Join Now

Consensus-developed secure configuration guidelines for hardening.

Download

Develop and update secure configuration guidelines for 25+ technology families.

Join a Community

Prescriptive, prioritized, and simplified set of cybersecurity best practices.

Download

Refine and verify best practices, related guidance, and mappings.

Join a Community

Learn More

Start Secure. Stay Secure.^®

Membership combines and automates the CIS Benchmarks, CIS Controls, and CIS-CAT Pro into a powerful and time-saving cybersecurity resource.

CIS-CAT Pro enables users to assess conformance to best practices and improve compliance scores over time.

“It is the most important membership for the compliance review of information security available in the market today.”

— Senior Manager, Information Security & Compliance International Public Service & Communications Agency

Consensus-based Guidelines

CIS Benchmarks and CIS Controls are consensus-based guides curated by security practitioners focused on performance, not profit.

Objective Standards

Our security best practices are referenced global standards verified by an objective, volunteer community of cyber experts.

Secure Online Experience

CIS is an independent, non-profit organization with a mission to provide a secure online experience for all.

Information Hub

What's New

Press-release • 25 Jan 2021

CIS Introduces IDEA Alliance to Drive Diversity and Inclusion in the Workplace

Press-release • 22 Jan 2021

9-1-1 Cybersecurity Concerns Spur New Partnership Between NENA: The 9-1-1 Association & the Center for Internet Security

Advisory • 21 Jan 2021

Multiple Vulnerabilities in Cisco Products Could Lead to Arbitrary Code Execution

Webinar • 19 Jan 2021

Open Source Content Management Systems

Media mention • 19 Jan 2021

7 Vulnerabilities in Popular DNS Forwarding Software Open Door to Range of Attacks

Advisory • 19 Jan 2021

Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution

Daily tip

Keep Sensitive Data Secure

With major data breaches being reported all too frequently, organizations are now placing increased emphasis on the security of personal, private, and sensitive information. Encryption is especially important if you are trying to send sensitive information that other people should not be able to access. Because email messages are sent over the Internet and might be intercepted by an attacker, it is important to add an additional layer of security to sensitive information.

Center for Internet Security®