As the cyber threat landscape evolves, the frameworks that organizations use must also evolve to address the changing times. As such, the Center for Internet Security (CIS) has released their new 8.1 version of the CIS Critical Security Controls. As the first CIS accredited organization, CorpInfoTech is uniquely situated to explain these new changes and how they will impact organizations in the future.
What Are the CIS Controls?
The 18 CIS Controls are a collection of "prescriptive, prioritized, and simplified security best practices that help defend against cyber-attacks". Within these controls are practical and accessible safeguards that organizations can implement regardless of size or industry. The Controls are proven effective against an overwhelming majority of cyber-attacks and are designed to facilitate compliance and act as a foundation or an organization security defense plan.
The CIS Controls v8.1
The purpose of the newest update to the CIS Controls is to address "the increasing complexities and vulnerabilities in today's cyber landscape". Version 8.1 seeks to accomplish this by adding new asset classes and introducing the govern security function. The "Govern" function will provide further guidance on how organizations can create and implement cybersecurity policies, procedures, and processes that secure their business assets. Effective governance will help organizations create stronger cybersecurity programs and facilitate implementation at all levels of the business.
This update is iterative, meaning that it builds upon the previous version without derailing previous security efforts or projects. With these new updates, organizations of all sizes will be able to effectively maintain a strong cybersecurity program.
Read the full press release here!
CorpInfoTech, a Trusted CIS Partner
As the first CIS accredited organization, CorpInfoTech is adept at implementing the Controls into a SMBs' security posture. We've utilized the Controls since their inception in 2008 and have continued to use them as the foundation of all our services. Our services include firewall management (xDEFENSE), vulnerability management (v360), security assessments, and compliance aid.
Contact CorpInfoTech today to learn more about how the CIS Controls can benefit your organization!
CIS related blog:
- CorpInfoTech Achieves CREST Accreditation Renewal as CIS Accredited Partner
- CorpInfoTech Becomes First CIS Accredited Assessor