CIS Logo
tagline: Confidence in the Connected World

Auditing, Assessing, Analyzing: A Prioritized Approach using the Pareto Principle

CIS applies the Pareto Principle to cybersecurity in order to develop the CIS Controls.

Page Icon

Overview

In an ever-growing mix of hundreds of potential cybersecurity concerns and even more proposed solutions, CIS applies the Pareto Principle – the concept that for many activities, roughly 80% of the effects come from 20% of the causes – to help prioritize cybersecurity actions.