CIS Benchmarks are comprehensive, consensus-driven security guidelines developed by the Center for Internet Security to help organizations securely configure a wide range of IT systems, including operating systems, cloud environments, applications, and network devices. Each benchmark contains detailed, prescriptive recommendations for hardening specific technologies, covering areas such as user account management, password policies, network settings, and software updates. The benchmarks are organized into two levels: Level 1 provides essential security controls suitable for most organizations with minimal impact on usability, while Level 2 offers more stringent measures for environments requiring higher security. These benchmarks are widely recognized and regularly updated by a global community of IT professionals, serving as a foundational resource for reducing attack surfaces, improving compliance, and mitigating cybersecurity risks.
Date is not updated as CIS publish and updated on a regular basis numerous CIS benchmarks standards.
Publication's URL
https://www.cisecurity.org/cis-benchmarksAdditional documents on this topic
- US DOD Security Technical Implementation Guides (STIGs)
- CISA Principles for the Secure Integration of Artificial Intelligence in Operational Technology
- NIST SP 800-88 Rev. 2 Guidelines for Media Sanitization
- NIST IR 8349 Methodology for Characterizing Network Behavior of Internet of Things Devices
- CIS Controls Internet of Things Companion Guide ★★★★★