127 indexed
COMPLIANCECompliance controls
127 controls across 14 compliance frameworks, grouped by framework. For cross-framework Jaccard overlap see /explore/crosswalk. Authored by Adam Lundqvist.
11 in CIS v8 · 127 total
| ID | Title | Summary |
|---|---|---|
| CIS_v8-1 | Inventory and Control of Enterprise Assets CIS v8pentest:medium | Actively manage (inventory, track, and correct) all enterprise assets (end-user devices, including portable and mobile; network devices; non-computing/IoT devi… |
| CIS_v8-13 | Network Monitoring and Defense CIS v8pentest:high | Operate processes and tooling to establish and maintain comprehensive network monitoring and defence against security threats across the enterprise's network i… |
| CIS_v8-16 | Application Software Security CIS v8pentest:high | Manage the security life cycle of in-house developed, hosted, or acquired software to prevent, detect, and remediate security weaknesses before they can impact… |
| CIS_v8-18 | Penetration Testing CIS v8pentest:high | Test the effectiveness and resiliency of enterprise assets through identifying and exploiting weaknesses in controls (people, processes, and technology), and s… |
| CIS_v8-2 | Inventory and Control of Software Assets CIS v8pentest:medium | Actively manage (inventory, track, and correct) all software (operating systems and applications) on the network so that only authorised software is installed … |
| CIS_v8-3 | Data Protection CIS v8pentest:high | Develop processes and technical controls to identify, classify, securely handle, retain, and dispose of data. |
| CIS_v8-4 | Secure Configuration of Enterprise Assets and Software CIS v8pentest:high | Establish and maintain the secure configuration of enterprise assets (end-user devices, including portable and mobile; network devices; non-computing/IoT devic… |
| CIS_v8-5 | Account Management CIS v8pentest:high | Use processes and tools to assign and manage authorisation to credentials for user accounts, including administrator accounts, as well as service accounts, to … |
| CIS_v8-6 | Access Control Management CIS v8pentest:high | Use processes and tools to create, assign, manage, and revoke access credentials and privileges for user, administrator, and service accounts for enterprise as… |
| CIS_v8-7 | Continuous Vulnerability Management CIS v8pentest:high | Develop a plan to continuously assess and track vulnerabilities on all enterprise assets within the enterprise's infrastructure, in order to remediate, and min… |
| CIS_v8-8 | Audit Log Management CIS v8pentest:medium | Collect, alert, review, and retain audit logs of events that could help detect, understand, or recover from an attack. |