Why CIS Solutions Join CIS Resources

CIS WorkBench Sign-in

CIS Hardened Images

Support

Why CIS

Who We Are

CIS is an independent, nonprofit organization with a mission to create confidence in the connected world

About Us Leadership Principles Testimonials

Solutions

	Secure Your Organization
	CIS Controls^® Prioritized & simplified best practices CIS Controls Community Help develop and maintain the Controls CIS RAM Information security risk assessment method CIS CSAT Assess & measure Controls implementation

	Secure Specific Platforms
	CIS Benchmarks^™ 100+ vendor-neutral configuration guides CIS Benchmarks Community Develop & update secure configuration guides CIS-CAT^® Assess system conformance to CIS Benchmarks CIS Hardened Images^® Virtual images hardened to CIS Benchmarks

CIS SecureSuite^®

Start secure and stay secure with integrated cybersecurity tools and resources designed to help you implement CIS Benchmarks and CIS Controls

Learn More Apply Now


	U.S. State, Local, Tribal & Territorial Governments
	Memberships MS-ISAC^® Cybersecurity resource for SLTT Governments EI-ISAC^® Election-focused cyber defense suite Services for Members Albert Network Monitoring^® Cost-effective Intrusion Detection System Managed Security Services Security monitoring of enterprises devices CIS Endpoint Security Services Device-level protection and response CIS CyberMarket^® Savings on training and software Malicious Domain Blocking & Reporting Prevent Connection to harmful web domains View All CIS Services

View All Products & Services

Join CIS

Get Involved

Join CIS as a member, partner, or volunteer - or explore our career opportunities

CIS SecureSuite^® Membership Multi-State ISAC (MS-ISAC^®) Elections Infrastructure ISAC (EI-ISAC^®) CIS CyberMarket^® Vendors CIS Communities Careers

Resources

	Resources
	Blog Advisories Newsletters Press Releases In The News Elections Resources

	Learn
	White Papers Webinars Case Studies Spotlights

	Filter by Topic
	CIS Benchmarks^™ CIS Controls^® CIS Hardened Images^® CIS Services^® MS-ISAC^® EI-ISAC^®

View All Resources

CIS Hardened Images

Support

CIS WorkBench Sign-in

Why CIS

Who We Are

CIS is an independent, nonprofit organization with a mission to create confidence in the connected world.

About Us Leadership Principles Testimonials

Solutions

Secure Your Organization

CIS Controls^®

Prioritized & simplified best practices

CIS RAM

Information security risk assessment method

CIS Controls Community

Help develop and maintain the Controls

CIS CSAT

Assess & measure Controls implementation

Secure Specific Platforms

CIS Benchmarks^™

100+ vendor-neutral configuration guides

CIS-CAT^®

Assess system conformance to CIS Benchmarks

CIS Benchmarks Community

Develop & update secure configuration guides

CIS Hardened Images^®

Virtual images hardened to CIS Benchmarks

CIS SecureSuite^®

Start secure and stay secure with integrated cybersecurity tools and resources designed to help you implement CIS Benchmarks and CIS Controls

Learn More Apply Now

U.S. State, Local, Tribal & Territorial Governments

Memberships

MS-ISAC^®

Cybersecurity resource for SLTT Governments

EI-ISAC^®

Election-focused cyber defense suite

Services for Members

Albert Network Monitoring^®

Cost-effective Intrusion Detection System

Managed Security Services

Security monitoring of enterprises devices

CIS Endpoint Security Services

Device-level protection and response

CIS CyberMarket^®

Savings on training and software

Malicious Domain Blocking & Reporting

Prevent Connection to harmful web domains

View All CIS Services

View All Products & Services

Join CIS

Get Involved

Join CIS as a member, partner, or volunteer - or explore our career opportunities.

CIS SecureSuite^® Membership Multi-State ISAC (MS-ISAC^®) Elections Infrastructure ISAC (EI-ISAC^®) CIS CyberMarket^® Vendors CIS Communities Careers

Resources

	Resources

	Blog Advisories Newsletters Press Releases In The News Elections Resources

	Learn

	White Papers Webinars Case Studies Spotlights

	Filter by Topic

	CIS Benchmarks^™ CIS Controls^® CIS Hardened Images^® CIS Services^® MS-ISAC^® EI-ISAC^®

View All Resources

Home • CIS Critical Security Controls • CIS Critical Security Control 7: Continuous Vulnerability Management

CIS Critical Security Control 7: Continuous Vulnerability Management

Overview

Develop a plan to continuously assess and track vulnerabilities on all enterprise assets within the enterprise’s infrastructure, in order to remediate, and minimize, the window of opportunity for attackers. Monitor public and private industry sources for new threat and vulnerability information.