Cybersecurity Tech Basics: Critical Security Controls: Overview | Practical Law

Cybersecurity Tech Basics: Critical Security Controls: Overview | Practical Law

A Practice Note providing an overview of the Center for Internet Security (CIS) Critical Security Controls® (CIS Controls), which offer a roadmap of core cyber defense measures applicable to all organizations and sectors. This Note discusses the 18 Controls, 153 associated Safeguards, and three implementation groups (IGs) and how they help organizations build a risk-driven information security program. It also explains how the CIS Controls map to the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) and addresses best practices and common pitfalls that can lead to unnecessary cyber vulnerabilities, leaving organizations open to cyberattack.

Cybersecurity Tech Basics: Critical Security Controls: Overview

Practical Law Practice Note Overview w-015-6905 (Approx. 15 pages)

Cybersecurity Tech Basics: Critical Security Controls: Overview

by Tony Sager, Center for Internet Security, Inc. (CIS®), with Practical Law Data Privacy & Cybersecurity
MaintainedUSA (National/Federal)
A Practice Note providing an overview of the Center for Internet Security (CIS) Critical Security Controls® (CIS Controls), which offer a roadmap of core cyber defense measures applicable to all organizations and sectors. This Note discusses the 18 Controls, 153 associated Safeguards, and three implementation groups (IGs) and how they help organizations build a risk-driven information security program. It also explains how the CIS Controls map to the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) and addresses best practices and common pitfalls that can lead to unnecessary cyber vulnerabilities, leaving organizations open to cyberattack.