Want to meet the CIS CSC guidelines?
As your expert security partner, C’S|3 Consultants can provide you with the necessary support for conducting a thorough assessment and consulting service to meet the requirements for Center for Internet Security (CIS) Critical Security Controls (CSC). C’S|3 Cyber Security consultants offer a two-gap analysis option to help determine how to close your organization and current information security program to help meet these requirements.
What is a CIS CSC Assessment?
The Center for Internet Security (CIS) Critical Security Controls (CSC) is a set of best practice guidelines focused on cyber defense. It was created to answer the question: What do we need to do to stop known attacks?
There are 20 controls grouped into 3 categories: Basic, Foundational, and Organizational.
- Basic: Bare minimum to protect your environment
- Foundational: A step up, that provides additional security benefits
- Organizational: Controls that covers the people and processes involved in cybersecurity
Why would I want a CIS CSC Assessment?
CSC is a recognized industry security standard. The controls are designed for actionable recommendations to automate, reducing the risks of human error or through human intervention. Implementation of these controls seeks to help reduce your external exposure and risk.
What are the deliverables of a CIS CSC engagement?
We consistently get great feedback on our reporting style. We help in developing reports that communicate assessment results in clear, easy to digest ways, that are appropriate for both technical and non-technical audiences. Typical deliverables out of an information security assessment include:
- Executive Summary Report
- Full Report
- Action Plan and/or Road Map
In addition, we will assist in helping protect remote workers and can help satisfy the legal requirements of data protection laws (GDPR, CCPA, etc.). There is no formal certification for completing the CIS CSC controls; however, you can always self assess and we will help you in the process.
What does a CIS CSC engagement cost?
Since every project is custom designed for our clients. C’S|3 consultants take into account your organizational size, complexity, industry, compliance requirements, and most importantly, your actual needs. We like you are budget sensitive but also make sure you address the requirements challenges in a phased approach. Because of our tailored approach, all you need to do is spend a few minutes on the phone or online video meetings with our team to make sure we are delivering exactly what you need and want.
The CIS CSC controls are freely available:https://www.cisecurity.org/controls/cis-controls-list/