×
Why CIS Solutions Join CIS Resources
CIS WorkBench Sign-in CIS WorkBench Sign In Cloud Security CIS Cloud Security Support CIS Support


Why CIS

Who We Are

CIS is an independent, nonprofit organization with a mission to create confidence in the connected world


About Us Leadership Principles Testimonials

Solutions

secure your organization
Secure Your Organization

CIS Controls®

Prioritized & simplified best practices

CIS Controls Community

Help develop and maintain the Controls

CIS RAM

Information security risk assessment method

CIS CSAT

Assess & measure Controls implementation
secure specific platforms
Secure Specific Platforms

CIS Benchmarks

100+ vendor-neutral configuration guides

CIS Benchmarks Community

Develop & update secure configuration guides

CIS-CAT®

Assess system conformance to CIS Benchmarks

CIS Hardened Images®

Virtual images hardened to CIS Benchmarks
cis securesuite CIS SecureSuite®

Start secure and stay secure with integrated cybersecurity tools and resources designed to help you implement CIS Benchmarks and CIS Controls
u s state local tribal and territorial governments
U.S. State, Local, Tribal & Territorial Governments

Memberships
MS-ISAC®

Cybersecurity resource for SLTT Governments

EI-ISAC®

Election-focused cyber defense suite

Services for Members
Albert Network Monitoring®

Cost-effective Intrusion Detection System

Managed Security Services

VSecurity monitoring of enterprises devices

CIS CyberMarket®

Savings on training and software

Malicious Domain Blocking & Reporting

Prevent Connection to harmful web domains

View All CIS Services  
View All Products & Services  

Join CIS

Get Involved

Join CIS as a member, partner, or volunteer - or explore our career opportunities


CIS SecureSuite® Membership Multi-State ISAC (MS-ISAC®) Elections Infrastructure ISAC (EI-ISAC®) CIS CyberMarket® Vendors CIS Communities Careers

Resources

resources
Secure Your Organization

Blog Advisories Newsletters Press Releases In The News Elections Resources
learn
Learn

White Papers Webinars Case Studies Spotlights Daily Tips
filter by topic
Filter by Topic

CIS Benchmarks CIS Controls® CIS Hardened Images® CIS Services® MS-ISAC® EI-ISAC®
View All Resources  
CIS Logo Show Search Expand Menu
Topic
Type



Blog post
Information security governance helps mitigate risk and helps with guidance for security and compliance.



Blog post
CIS has developed guidance to help enterprises mitigate the risk of attacks on exploitable protocols such as Server Message Block (SMB).



White paper
Download this guide for direct mitigations for SMB, as well as which best practices an enterprise can put in place to reduce the risk of an SMB-related attack. 



Blog post
Part 2 of a 2-part series where we discuss first impressions of the CIS Controls v8 launch and feedback from the community.



Media mention
The goal of CIS Controls V8 is to provide practical and specific actions that can spark creation of a better network security environment.



Media mention
The key difference between the CIS Controls and other frameworks is their organization of the controls into "Implementation Groups" (IGs).



Blog post
CIS Community Defense Model uses real-world attack technique data from the Verizon DBIR and MITRE ATT&CK to prioritize cybersecurity Safeguards.



White paper
The Center for Internet Security's 2020 Year in Review highlights all the efforts the cybersecurity nonprofit accomplished in its 20th year in business.



Media mention
According to a 2018 CBIA survey, nearly one-quarter of Connecticut businesses experienced a data breach or cyber-attack in the previous two years.



Media mention
The v8 release is not just an update to the Controls; the whole ecosystem surrounding the Controls has been (or soon will be) updated as well.



Press releases
The v8 release is not just an update to the Controls; the whole ecosystem surrounding the Controls has been (or soon will be) updated as well.



Blog post
The Center for Internet Security (CIS) officially launched CIS Controls v8, which was enhanced to keep up with evolving technology now including cloud and mobile technologies.



White paper
This document provides a detailed mapping of the relationships between CIS Controls v8 and NIST SP 800-171 Rev 2.



White paper
CIS Controls v8 are mapped to the Cybersecurity Maturity Model Certification (CMMC) levels to help organizations required to meet CMMC requirements.



White paper
CIS Controls v8
May 18, 2021

CIS Controls v8 offers prescriptive, prioritized, and simplified cybersecurity best practices that provide a clear path to improve an



1 2 3 24
Subscribe Arrow