×
Why CIS Solutions Join CIS Resources
CIS WorkBench Sign-in CIS WorkBench Sign In CIS Hardened Images CIS Hardened Images Support CIS Support


Why CIS

Who We Are

CIS is an independent, nonprofit organization with a mission to create confidence in the connected world


About Us Leadership Principles Testimonials

Solutions

secure your organization
Secure Your Organization

CIS Controls®

Prioritized & simplified best practices

CIS Controls Community

Help develop and maintain the Controls

CIS RAM

Information security risk assessment method

CIS CSAT

Assess & measure Controls implementation
secure specific platforms
Secure Specific Platforms

CIS Benchmarks

100+ vendor-neutral configuration guides

CIS Benchmarks Community

Develop & update secure configuration guides

CIS-CAT®

Assess system conformance to CIS Benchmarks

CIS Hardened Images®

Virtual images hardened to CIS Benchmarks
cis securesuite CIS SecureSuite®

Start secure and stay secure with integrated cybersecurity tools and resources designed to help you implement CIS Benchmarks and CIS Controls

Learn More      Apply Now  
u s state local tribal and territorial governments
U.S. State, Local, Tribal & Territorial Governments

Memberships
MS-ISAC®

Cybersecurity resource for SLTT Governments

EI-ISAC®

Election-focused cyber defense suite

Services for Members
Albert Network Monitoring®

Cost-effective Intrusion Detection System

Managed Security Services

Security monitoring of enterprises devices

CIS Endpoint Security Services

Device-level protection and response

CIS CyberMarket®

Savings on training and software

Malicious Domain Blocking & Reporting

Prevent Connection to harmful web domains

View All CIS Services  
View All Products & Services  

Join CIS

Get Involved

Join CIS as a member, partner, or volunteer - or explore our career opportunities


CIS SecureSuite® Membership Multi-State ISAC (MS-ISAC®) Elections Infrastructure ISAC (EI-ISAC®) CIS CyberMarket® Vendors CIS Communities Careers

Resources

resources
Resources

Blog Advisories Newsletters Press Releases In The News Elections Resources
learn
Learn

White Papers Webinars Case Studies Spotlights
filter by topic
Filter by Topic

CIS Benchmarks CIS Controls® CIS Hardened Images® CIS Services® MS-ISAC® EI-ISAC®
View All Resources  
CIS Logo Show Search Expand Menu
Topic
Type



Blog post
SANS registration open for security awareness and skills training in the CIS Critical Security Controls with discounts for SLTTs.



Blog post
CIS CTO Kathleen Moriarty interviews Justin Richer author of "OAuth2 In Action" to discuss authentication, authorization, federation, and related technologies.



Advisory

A vulnerability has been discovered in HP FutureSmart that could allow for arbitrary code execution.




Blog post
Microsoft Azure Security Benchmark v3 maps to CIS Critical Security Controls v8 showing its applicability to an enterprise’s cybersecurity program regardless of architecture.



Blog post
Authentication and authorization using single sign-on go hand in hand when it comes to securing an enterprise's systems.



Blog post
As of November 2021, the Center for Internet Security (CIS) will cease support for CIS-CAT Pro Assessor v3.



Advisory

A vulnerability has been discovered in Microsoft Edge that could result in remote code execution.




Advisory

A vulnerability has been discovered in Fortinet FortiWeb that could allow for arbitrary code execution.




Advisory

A vulnerability has been discovered in multiple NETGEAR products, which could allow for arbitrary code execution.




Blog post
While operating in the cloud, it's crucial to understand the division of security responsibilities, known as the shared responsibility model.



Advisory

Multiple vulnerabilities have been discovered in Google Chrome, the most severe of which could allow for arbitrary code execution.




Press releases
Alan Paller, an icon of the cybersecurity industry, passed away on November 9. Most knew Alan as the founder of the SANS Institute, the world’s leading teacher of cybersecurity skills. He was an unstoppable force of nature, brimming with ideas, passion, and constant action.



Blog post
In this week's podcast, we welcome Thordis Thorsteins from Panaseer to discuss the importance of collecting accurate data and automating as much of the process as possible.



Advisory

Multiple vulnerabilities have been discovered in iCloud for Windows Could Allow for Arbitrary Code Execution.




Advisory

A vulnerability has been discovered in Palo Alto PAN-OS that could allow for arbitrary code execution.



1 2 3 105
Subscribe Arrow