CIS Center for Internet Security

Blog Post: Call for participation: Help the CIS Controls Secure Mobile and Cloud Environments

See all the latest

Alert Level: GUARDED

Low

Guarded

Elevated

High

Severe

Learn More

CIS-CAT Pro Assessor v4.
Now with Remote Assessment!

CIS-CAT Pro Assessor v4 offers remote assessment of endpoints through the Command Line Interface (CLI). Coverage for operating systems, servers, and more.

See Webinar

CIS harnesses the power of a global IT community to safeguard public and private organizations against cyber threats.

CIS-CAT Pro Assessor v4.
Now with Remote Assessment!

CIS-CAT Pro Assessor v4 offers remote assessment of endpoints through the Command Line Interface (CLI). Coverage for operating systems, servers, and more.

See Webinar

Start Secure, Stay Secure

A CIS SecureSuite Membership combines the CIS Benchmarks, CIS Controls, and CIS-CAT Pro into one powerful cybersecurity resource for businesses, nonprofits, and governmental entities.

Join Now

Join MS-ISAC

Join EI-ISAC

The MS-ISAC & EI-ISAC® are focal points for cyber threat prevention, protection, response, & recovery for U.S. State, Local, Tribal, & Territorial government entities. CIS is home to the MS-ISAC & EI-ISAC.

Robust automated configuration assessment tool rapidly identifies vulnerabilities with coverage for 80+ CIS Benchmarks.

Learn More

Proven CIS Benchmarks guidelines to protect over 100 distinct systems & platforms.

Download

20 prioritized actions to beat the vast majority of the most common attacks.

Download

Learn More

Start Secure, Stay Secure A CIS SecureSuite Membership combines and automates the CIS Benchmarks, CIS Controls, and CIS-CAT Pro into one powerful, time-saving cybersecurity resource for businesses, nonprofits, and governmental entities.

Leverage remediation content for rapid CIS Benchmark implementation
Connect with CIS staff and developers for technical support

“It is the most important membership for the compliance review of information security available in the market today.”

— Senior Manager, Information Security & Compliance International Public Service & Communications Agency

Consensus-based Guidelines

CIS Benchmarks and CIS Controls are consensus-based guides curated by security practitioners focused on performance, not profit.

Objective Standards

Our security best practices are referenced global standards verified by an objective, volunteer community of cyber experts.

Secure Online Experience

CIS is an independent, non-profit organization with a mission to provide a secure online experience for all.

Information Hub

What's New

Advisory • 13 Dec 2018

A Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution

Advisory • 13 Dec 2018

A Vulnerability in IBM WebSphere Application Server Could Allow for Remote Code Execution

Newsletter • 12 Dec 2018

Security and Privacy in the Connected Home

Advisory • 11 Dec 2018

Multiple Vulnerabilities in Adobe Acrobat and Reader Could Allow for Arbitrary Code Execution (APSB18-41)

Advisory • 11 Dec 2018

Critical Patches Issued for Microsoft Products, December 11, 2018

Advisory • 11 Dec 2018

Multiple Vulnerabilities in Mozilla Firefox Could Allow for Arbitrary Code Execution

Daily tip

Keep Sensitive Data Secure

With major data breaches being reported all too frequently, organizations are now placing increased emphasis on the security of personal, private, and sensitive information. Encryption is especially important if you are trying to send sensitive information that other people should not be able to access. Because email messages are sent over the Internet and might be intercepted by an attacker, it is important to add an additional layer of security to sensitive information.

Center for Internet Security®