CIS Top 20 Critical Security Controls Solutions

Prioritize security controls for effectiveness against real world threats

The Center for Internet Security (CIS) Top 20 Critical Security Controls (previously known as the SANS Top 20 Critical Security Controls), is a prioritized set of best practices created to stop the most pervasive and dangerous threats of today. It was developed by leading security experts from around the world and is refined and validated every year.


As you probably know, simply being compliant is not enough to mitigate probable attacks and protect your critical information. While there's no silver bullet for security, organizations can reduce chances of compromise by moving from a compliance-driven approach to a risk management approach focused on real world effectiveness. Implementing the CIS top 20 critical security controls is a great way protect your organization from some of the most common attacks.

Which Regulations Matter to You?

We'll help you determine which regulations your organization needs to meet.

Contact Us

In the 2016 ranking from SANS, Rapid7 was listed as the top solution provider addressing the CIS Top 20 Critical Security Controls. Click each control listed below to learn more about how Rapid7 can help.

7 steps to implement the Top 20 Controls

Download Guide