CIS Benchmarks and Compliance Solutions

Understand how well your systems are configured to CIS benchmarks and best practices

The Center of Internet Security (CIS) is a non-for-profit organization that develops their own Configuration Policy Benchmarks, or CIS benchmarks, that allow organizations to improve their security and compliance programs and posture. This initiative aims to create community developed security configuration baselines, or CIS benchmarks, for IT and Security products that are commonly found throughout organizations. 

Which regulations matter to you?

We'll help you determine which regulations your organization needs to meet.

Contact Us

With solutions from Rapid7 you can:

Check and report on your compliance to CIS benchmarks

Use InsightVM, Rapid7's vulnerability risk management solution, to easily and automatically check the settings on all the assets in your organization to determine their overall level of compliance to CIS benchmarks in one unified view.

InsightVM scans all of your assets for the overall level of compliance against CIS benchmarks and policies. You can use InsightVM to determine the overall level of compliance across the organization for each CIS benchmark that you are interested in via pre-built scan templates, or with the Custom Policy Builder capability. Custom Policy Builder enables you to create, modify, and augment common benchmarks like CIS based on the unique needs of your IT environment.

Ready to try InsightVM?

Download a free trial