Skip to content
Log in

CIS Benchmark

Definition

A technology-specific configuration hardening guide published by CIS for operating systems, cloud services, databases, and applications. Each Benchmark provides Level 1 (broadly applicable, low disruption) and Level 2 (higher security, may reduce functionality) recommendations with specific audit commands.

Related terms

CIS Controls Self-Assessment Tool (CSAT)
A free web-based tool provided by CIS that allows organisations to score their current implementation status for each Safeguard and generate a...
CIS Controls v8
The eighth version of the CIS Critical Security Controls, released in May 2021. It consolidates 18 Controls and 153 Safeguards, reorganised from...
Crosswalk
A published table that aligns controls from two frameworks side by side to show which controls address the same security objective. NIST,...
Implementation Group (IG)
A CIS Controls concept that divides the 153 safeguards across three tiers by organisational size and risk profile. IG1 (56 safeguards) covers...
Safeguard
The individual action item within a CIS Control. Each Safeguard specifies a concrete activity (for example, 'establish and maintain an accurate inventory...

Explained in

  • CIS Controls and Implementation GroupsA technology-specific configuration hardening guide published by CIS for operating systems, cloud services, databases, and applications. Each Benchmark provide...

Your journey to becoming a forensic professional starts here.

Practice with mock tests, learn from structured notes, and get your questions answered by a global forensic community, all in one place.

Continue learningCreate Your Account