×
Why CIS Solutions Join CIS Resources
CIS WorkBench Sign-in CIS WorkBench Sign In Support CIS Support


Why CIS

Who We Are

CIS is an independent, nonprofit organization with a mission to create confidence in the connected world


About Us Leadership Principles Testimonials

Solutions

Secure Your Organization

CIS Controls®

Prioritized & simplified best practices

CIS Controls Community

Help develop and maintain the Controls

CIS RAM

Information security risk assessment method

CIS CSAT

Assess & measure Controls implementation
Secure Specific Platforms

CIS Benchmarks

100+ vendor-neutral configuration guides

CIS Benchmarks Community

Develop & update secure configuration guides

CIS-CAT®

Assess system conformance to CIS Benchmarks

CIS Hardened Images®

Virtual images hardened to CIS Benchmarks
U.S. State, Local, Tribal & Territorial Governments

Memberships
MS-ISAC®

Cybersecurity resource for SLTT Governments

EI-ISAC®

Election-focused cyber defense suite

Services for Members
Albert Network Monitoring®

Cost-effective Intrusion Detection System

Managed Security Services

VSecurity monitoring of enterprises devices

CIS CyberMarket®

Savings on training and software

Malicious Domain Blocking & Reporting

Prevent Connection to harmful web domains
View All Products & Services  

Join CIS

Get Involved

Join CIS as a member, partner, or volunteer - or explore our career opportunities


CIS SecureSuite® Membership Multi-State ISAC (MS-ISAC®) Elections Infrastructure ISAC (EI-ISAC®) CIS CyberMarket® Vendors CIS Communities Careers

Resources

Secure Your Organization

Blog Advisories Newsletters Press Releases In The News Elections Resources
Learn

White Papers Webinars Case Studies Spotlights Daily Tips
Filter by Topic

CIS Benchmarks CIS Controls® CIS Hardened Images® CIS Services® MS-ISAC® EI-ISAC®
View All Resources  
CIS Logo Show Search Expand Menu
Topic
Type



Blog post
This episode, CIS members and guests discuss how the new CIS Controls v8 is not about the list but to keep up with the ever-changing cyber ecosystem.



Emails & Newsletters
In this edition, we’ll look at potential warning signs of a compromised email account, what you can do to recover and help prevent it in the future.



Advisory

Multiple vulnerabilities have been discovered in Wi-Fi enabled devices, the most severe of which could allow for data exfiltration.




Blog post
Here are five reasons why it makes sense for your organization to work in the cloud, and to do so securely using CIS resources such as CIS Hardened Images.



Advisory

Multiple vulnerabilities have been discovered in Adobe Products, the most severe of which could allow for arbitrary code execution.




Advisory

Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution.




Advisory

Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for arbitrary code execution in the context of the logged on user.




Webinar
Learn about what's coming for the new CIS Controls v8 coming May 2021.



Webinar
Learn about the newly released CIS Controls v8 including its creation, changes from v7, new updates for resources and tools, and more.



Media mention
Safeguarding public cloud environments is a shared responsibility. Cloud customers should use CIS Benchmarks to ensure cloud security at the account level.



Blog post
In Amazon Web Services (AWS), there’s a shared security responsibility between AWS and the customer.



Advisory

Multiple vulnerabilities have been discovered in Exim, the most severe of which could allow for remote code execution.




Advisory

Multiple vulnerabilities have been discovered in Cisco SD-WAN vManage Software, the most severe of which could allow for arbitrary code execution.




Advisory

Multiple vulnerabilities have been discovered in Cisco HyperFlex HX software, the most severe of which could allow for arbitrary code execution.




Media mention
The primary method of cyberattacks has been unsophisticated spear-phishing campaigns to infect networks with malicious ransomware.


1 2 3 155
Subscribe Arrow