CIS Controls Implementation Guide

Critical Security Controls, cyber security, Lessons Learned Published October 7, 2017

CIS Controls Implementation Guide

Female guide leading the way

The CIS Controls Implementation Guide was recently released by the Center for Internet Security (CIS), the home of CIS Controls directly mapped to their CIS Controls. It is focused on actionable steps that can be taken right now to assess and improve cyber security posture and preparedness, particularly in small and medium-sized enterprises. Recently a webinar with some team members who helped develop the Implementation Guide was recorded.  

The guide focuses on three key areas of
  • Know your Environment
  • Protect your Assets
  • Prepare your Organization
I especially like the questions that are provided in the Implementation Guide.
  • Do you know what is connected to your computers and networks?
  • Do you know what software is running on your systems and networks?
  • Do you set up your computers with security in mind?
  • Do you manage who has access to sensitive information or who has extra privileges?
  • Is your staff clear about their role in protecting your organization from cyber incidents?
When reviewing these questions, especially for the first time, you may not like your answers very much. I encourage you to use your answers as motivation to apply focused attention to achieve better solutions over the next 30 days. No matter the size of your enterprise, I believe there is something in the Implementation Guide for you!
Subscribe to our email list to get more cybersecurity content delivered to your Inbox!

One thought on “CIS Controls Implementation Guide

  1. Pingback: What Assumptions Are You Making? - Security Ever After - CISO

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.