Controls Overview - CIS Controls v8.0

1

Inventory and Control of Enterprise Assets

5 safeguards

IG1: 2

IG2: 4

IG3: 5

2

Inventory and Control of Software Assets

7 safeguards

IG1: 3

IG2: 6

IG3: 7

3

Data Protection

14 safeguards

IG1: 6

IG2: 12

IG3: 14

4

Secure Configuration of Enterprise Assets and Software

12 safeguards

IG1: 7

IG2: 11

IG3: 12

5

Account Management

6 safeguards

IG1: 4

IG2: 6

IG3: 6

6

Access Control Management

8 safeguards

IG1: 5

IG2: 7

IG3: 8

7

Continuous Vulnerability Management

7 safeguards

IG1: 4

IG2: 7

IG3: 7

8

Audit Log Management

12 safeguards

IG1: 3

IG2: 11

IG3: 12

9

Email and Web Browser Protections

7 safeguards

IG1: 2

IG2: 6

IG3: 7

10

Malware Defenses

7 safeguards

IG1: 3

IG2: 7

IG3: 7

11

Data Recovery

5 safeguards

IG1: 4

IG2: 5

IG3: 5

12

Network Infrastructure Management

8 safeguards

IG1: 1

IG2: 7

IG3: 8

13

Network Monitoring and Defense

11 safeguards

IG1: 0

IG2: 6

IG3: 11

14

Security Awareness and Skills Training

9 safeguards

IG1: 8

IG2: 9

IG3: 9

15

Service Provider Management

7 safeguards

IG1: 1

IG2: 4

IG3: 7

16

Application Software Security

14 safeguards

IG1: 0

IG2: 11

IG3: 14

17

Incident Response Management

9 safeguards

IG1: 3

IG2: 8

IG3: 9

18

Penetration Testing

5 safeguards

IG1: 0

IG2: 3

IG3: 5

CIS Controls v8.0 Overview

Inventory and Control of Enterprise Assets

Inventory and Control of Software Assets

Data Protection

Secure Configuration of Enterprise Assets and Software

Account Management

Access Control Management

Continuous Vulnerability Management

Audit Log Management

Email and Web Browser Protections

Malware Defenses

Data Recovery

Network Infrastructure Management

Network Monitoring and Defense

Security Awareness and Skills Training

Service Provider Management

Application Software Security

Incident Response Management

Penetration Testing