Implementing the CIS Top 20 Critical Security Controls is a great way to protect your organization from some of the most common types of cyberattacks, but it can be difficult to understand exactly how to put these concepts into practice. Rapid7’s Advisory Services team, which specializes in security assessments for organizations, developed this guide to explain each of the 20 CIS Critical Security Controls in plain language and assess how it can be approached, evaluated, and implemented.
Overview
Everywhere, security practitioners are wondering, “How can I be prepared to stop known attacks?” A complete overhaul of your security program would be ideal, but these types of changes don’t happen overnight. Luckily, the CIS Top 20 Critical Security Controls were developed to provide a framework of real ideas and actions that can be incrementally incorporated into your security program to strengthen your approach to security and stop today’s most pervasive and dangerous threats.
Use this guide to better understand how to approach and implement each of the key controls so you can go on to develop a best-in-class security program for your organization.