© 2020 Content Security Pty Ltd.
In today’s rapidly evolving security ecosystem, businesses need consistent and cohesive direction on how to best configure their technology investments. This is especially true for the masses of enterprises undergoing digital transformations, and furthermore, for the many looking to strengthen their cyber security defences against evolving threats. Thankfully, the CIS Benchmarks provide a means of doing so in a cost-effective, cohesive manner.
The Centre for Internet Security (CIS) is a not-for-profit organisation who identifies, provides and promotes consensus-based best practice security standards and policies. The CIS Benchmarks act as an expertly crafted guide for calibrating and configuring a range of IT products.
There are over 140 benchmarks, with the extensive list spanning several core technology categories such as server software, cloud providers, desktop software, network devices and more. With the help of our configuration reviews, you can meet these benchmarks and safeguard your systems from evolving cyber threats.
Our security consultants are able to review the security configuration across a wide variety of your systems, servers and devices. We identify where your IT and technology systems are lacking in comparison to the CIS benchmarks and other industry standards, thus guiding you on the road to more robust and secure configurations.
The primary objective of our configuration reviews is to ensure your environment is meeting industry best practice. Therefore, we leverage the extensive CIS benchmarks as a guide, comparing your technology to industry best practices as well as current attack vectors.
Consulting these globally recognised industry standards and utilising leading technologies, our security consultants analyse your high-level documentation. As a result, we’re able to deliver a customised and comprehensive risk assessment of the in scope environments.
We collate any audit findings in a detailed report, assessing your settings in comparison to the CIS benchmarks. In addition to general evaluation details, we provide recommendations for any remediations and further enhancement of your security posture.
This assessment identifies any poor security practices and common misconfigurations present in your systems to secure you now and into the future. For instance, we’re able to test the security of your AWS environment to ensure strong foundations for future deployments.
The CIS Benchmarks are known to map closely against the NIST Cyber Security Framework (CSF), the PCI DSS (Payment Card Industry Data Security Standard) and other regulatory frameworks. Thus, one of the key advantages of our configuration reviews is helping you make significant strides towards compliance with these standards.
Our goal is to secure your environment now and into the future. Certainly one of the most important aspects of any security assessment is ensuring that the client’s environment is flexible enough for change and forms the foundations for future deployments.
The CIS Benchmarks are continuously updated and backed by a unique, consensus-based decision-making model. Therefore, our configuration reviews ensure you’re able to draw on our expertise, in addition to the global community of cyber security and IT professionals.
Part of our responsibility as your trusted cyber security partner is to ensure you’re kept up to date on security releases and the general threat landscape. In order to achieve this, we continuously check for new standards and benchmarks, ensuring these are integrated into our review process.