CIS Logo
tagline: Confidence in the Connected World

A Prioritized Approach to Implement the CIS Controls

June 22, 2016

Prioritize Your NIST CSF Implementation with the CIS Controls - Lessons Learned from the City of Portland

There is widespread recognition about the benefits of implementing the NIST Cybersecurity Framework (CSF). As adoption grows, many organizations are looking for guidance about how they can strengthen security in phases using risk-based prioritization along with the CSF.

During the session, Christopher Paidhrin, Information Security Manager and Brian Ventura, Information Security Architect from City of Portland will share their experience implementing NIST CSF in-conjunction with the risk-based prioritization offered by the CIS Controls. Chris and Brian have developed an in-depth planning tool for strengthening security in phases, which they will review during the webinar. All webinar attendees will be given access to the tool following the session.

The content presented will be most useful for CISOs and InfoSec professionals responsible for evaluating and optimizing the effectiveness of ongoing information security practices in state, local, tribal, and territorial government organizations.


Ted Gary

Sr. Product Marketing Manager, Tenable

Christopher Paidhrin

Information Security Manager, City of Portland,

Brian Ventura

Information Security Architect, City of Portland

Topics Covered:

  • Prioritizing control implementation based on your specific needs
  • Structuring budget requests on risk-based priorities
  • Developing a multi-year roadmap to strengthen security
  • Your questions during live Q&A