Description

This resource provides a collection of educational cybersecurity resources specifically designed for kids. With the increasing amount of time children spend online, especially in the current virtual school environment, it is important to ensure their safety and understanding of cybersecurity.

 The curated selection of resources aims to keep kids entertained, educated, and safe while they navigate the internet. It acknowledges that while the initial excitement of online learning may fade, students may still spend a significant amount of their free time browsing the internet. 
 
 The resource offers a variety of age-appropriate materials to cater to kids of every age. By engaging with these resources, children can learn about the importance of cybersecurity and develop the necessary skills to protect themselves online. 
 
 The main objective of this collection is to provide a fun and interactive learning experience for kids, while also promoting awareness of potential online risks. By utilizing these resources, parents and educators can help children understand the importance of online safety and equip them with the knowledge to make informed decisions while using the internet. 
 
 Overall, this resource serves as a valuable tool for parents, educators, and children alike, offering a range of educational cybersecurity materials to ensure a safe and enjoyable online experience for kids.

More Information

https://www.cisecurity.org/insights/blog/6-educational-cybersecurity-resources-for-kids

Description

This resource is a collection of CIS Benchmarks, which are prescriptive configuration recommendations for over 25 vendor product families. These benchmarks have been developed by cybersecurity experts worldwide to assist in safeguarding systems against potential threats.

The main purpose of this resource is to provide users with a comprehensive list of CIS Benchmarks for various technologies, including operating systems, cloud providers, and network devices. By following these configuration recommendations, users can enhance the security of their systems and mitigate potential vulnerabilities.

To utilize this resource, users can follow a simple two-step process. First, they need to select the technology they are interested in securing. This can include choosing from a range of options such as operating systems, cloud providers, and network devices. Once the technology is selected, users can proceed to the next step.

In the second step, users can access the specific CIS Benchmark they are looking for. This allows them to obtain the necessary configuration recommendations tailored to their chosen technology. By following these benchmarks, users can implement best practices and enhance the security posture of their systems.

Overall, this resource serves as a valuable tool for individuals and organizations seeking to protect their systems against potential threats. By providing prescriptive configuration recommendations, it enables users to confidently safeguard their technology infrastructure.

More Information

https://www.cisecurity.org/cis-benchmarks/

Description

This resource provides an overview of the CIS Critical Security Controls (CIS Controls), a set of best practices designed to enhance cybersecurity measures. The CIS Controls are a prescriptive and prioritized framework that offers guidance to organizations in protecting their data and systems from cyber-attacks.

The main purpose of the CIS Controls is to provide a standardized approach to cybersecurity, enabling organizations to establish a strong cybersecurity posture. By following these controls, organizations can mitigate common cyber-attack vectors and reduce the risk of security breaches.

The CIS Controls are widely adopted by cybersecurity practitioners globally. They offer a simplified and actionable set of recommendations that can be implemented across various industries and organizational sizes. The controls are regularly updated to address emerging threats and evolving cybersecurity challenges.

Key features of the CIS Controls include their prioritized nature, which helps organizations focus on the most critical security measures first. The controls are also designed to be practical and achievable, providing clear guidance on implementation. Additionally, the CIS Controls offer resources such as tools, benchmarks, and guidelines to support organizations in their cybersecurity efforts.

Overall, the CIS Critical Security Controls serve as a valuable resource for organizations seeking to enhance their cybersecurity posture. By following these best practices, organizations can strengthen their defenses against cyber threats and protect their sensitive data and systems.

More Information

https://www.cisecurity.org/controls

Description

This tool, called CIS CSAT, is a free web application developed by CIS (Center for Internet Security) to assist organizations in assessing the implementation of CIS Critical Security Controls. The CIS Critical Security Controls are a widely recognized set of cybersecurity guidelines that have gained popularity over the past decade. CIS CSAT aims to support organizations in their adoption of these controls by providing a user-friendly interface for assessing their implementation. The tool is designed to be accessible to both cybersecurity experts and organizations with limited technical expertise. By utilizing CIS CSAT, organizations can evaluate their current cybersecurity posture and identify areas where improvements can be made. The tool allows users to assess their adherence to the CIS Critical Security Controls through a series of questions and provides guidance on how to address any identified gaps. As a community-built resource, CIS CSAT benefits from the collective expertise of thousands of cybersecurity professionals worldwide. This ensures that the tool remains up-to-date and aligned with the latest industry best practices. Overall, CIS CSAT serves as a valuable resource for organizations seeking to enhance their cybersecurity defenses. By leveraging this free web application, organizations can assess their implementation of the CIS Critical Security Controls and take proactive steps to strengthen their overall security posture.

More Information

https://www.cisecurity.org/insights/blog/cis-csat-free-tool-assessing-implementation-of-cis-controls

Description

The CIS CyberMarket is designed to help organizations find and compare security products and services. The website provides users with a searchable database of vendors, product information, and user reviews. The CyberMarket also offers a variety of resources, such as tips for selecti

More Information

https://www.cisecurity.org/services/cis-cybermarket

Description

This resource provides a comprehensive list of CIS Benchmarks, which are prescriptive configuration recommendations for over 25 vendor product families. The purpose of these benchmarks is to offer cybersecurity experts and system administrators globally a consensus-based approach to enhance system protection against potential threats.

The CIS Benchmarks cover a wide range of technology categories, including operating systems, cloud providers, network devices, and more. Users can easily navigate through the resource to find the specific CIS Benchmark they are looking for by following two simple steps.

Step 1 involves selecting the desired technology category from a variety of options available. This allows users to narrow down their search and focus on the specific area they are interested in.

Step 2 involves selecting the specific CIS Benchmark within the chosen technology category. This step ensures that users can access the precise configuration recommendations relevant to their system or product.

By following these steps, users can access the recommended configuration settings for their chosen technology, enabling them to implement best practices and enhance the security of their systems. The resource aims to empower users to protect their systems more confidently by leveraging the expertise and consensus of cybersecurity professionals worldwide.

Overall, this tool serves as a valuable resource for individuals and organizations seeking to strengthen their cybersecurity posture by implementing industry-recognized best practices through the use of CIS Benchmarks.

More Information

https://www.cisecurity.org/cis-benchmarks/

Description

This resource, CIS SecureSuite Membership, offers organizations access to a wide range of cybersecurity resources and tools to enhance their cybersecurity practices. It aims to assist organizations in implementing the CIS Critical Security Controls (CIS Controls) and CIS Benchmarks, whether they are preparing for a security audit or seeking to configure systems securely.

CIS SecureSuite Membership provides proven best practices that can be leveraged to improve cybersecurity measures. By becoming a member, organizations gain access to an effective and comprehensive set of resources and tools. These resources are designed to help organizations align their cybersecurity practices with industry standards and guidelines.

The membership offers access to the CIS Controls, which are a set of 20 prioritized actions that organizations can take to enhance their cybersecurity posture. These controls cover a wide range of areas, including inventory and control of hardware assets, continuous vulnerability management, secure configuration for hardware and software, and more.

Additionally, CIS Benchmarks are provided as part of the membership. These benchmarks offer configuration guidelines for various operating systems, software applications, and network devices. By following these benchmarks, organizations can ensure that their systems are configured securely and in line with industry best practices.

Overall, CIS SecureSuite Membership is a valuable resource for organizations looking to strengthen their cybersecurity defenses. It offers access to a comprehensive set of resources and tools, including the CIS Controls and CIS Benchmarks, to help organizations implement effective cybersecurity measures and protect against potential threats.

More Information

https://www.cisecurity.org/cis-securesuite

Description

This resource is a website that aims to make the connected world a safer place by harnessing the power of the global IT community to protect public and private organizations against cyber threats. The website offers various resources and tools to assist in navigating the cybersecurity audit cycle.

One of the main features of this resource is a webinar titled "How to Navigate the Cybersecurity Audit Cycle." Led by a Chief Information Security Officer (CISO), this webinar provides an overview of how the CIS SecureSuite resources and tools can be utilized to navigate the cybersecurity audit process. By attending this webinar, individuals can gain valuable insights and guidance on effectively managing cybersecurity audits.

Additionally, the website features a blog post titled "4 Reasons Why Assessments Are Key to Your Governance Audits." This blog post highlights the importance of assessments in governance audits and provides four key reasons why they are crucial. By reading this blog post, visitors can enhance their understanding of the significance of assessments in ensuring effective governance and security measures.

Overall, this resource serves as a platform for individuals and organizations to access valuable information and tools related to cybersecurity audits. By leveraging the expertise and resources provided, users can enhance their cybersecurity practices and contribute to making the connected world a safer place.

More Information

https://www.cisecurity.org/

Description

This resource is a website that aims to make the connected world a safer place by harnessing the power of the global IT community to protect public and private organizations against cyber threats. The website offers various resources and tools to assist in navigating the cybersecurity audit cycle.

One of the main features of this resource is a webinar titled "How to Navigate the Cybersecurity Audit Cycle," which will be conducted by their Chief Information Security Officer (CISO) on August 29. This webinar provides an overview of how the CIS SecureSuite resources and tools can be utilized to navigate the cybersecurity audit process.

Additionally, the website features a blog post titled "4 Reasons Why Assessments Are Key to Your Governance Audits." This blog post highlights the importance of assessments in conducting effective governance audits and provides insights into why they are crucial for organizations.

By leveraging the expertise and knowledge of the global IT community, this resource aims to equip organizations with the necessary tools and information to enhance their cybersecurity measures. It emphasizes the significance of assessments and offers valuable insights through webinars and blog posts.

Overall, this resource serves as a platform for organizations to access valuable resources, tools, and educational content to strengthen their cybersecurity practices and protect against cyber threats.

More Information

https://www.cisecurity.org/

Description

This resource, the Center for Internet Security Risk Assessment Method (CIS RAM), is designed to assist organizations in implementing and evaluating their security measures against the CIS Critical Security Controls (CIS Controls) cybersecurity best practices. The CIS RAM Family of Documents offers comprehensive guidance, including instructions, examples, templates, and exercises, to facilitate the process of conducting a cyber risk assessment.

CIS RAM offers three distinct security approaches, each tailored to support different levels of security. By utilizing this method, organizations can effectively evaluate their security posture and identify potential vulnerabilities or areas for improvement. The resource emphasizes the importance of security at every level, ensuring that all aspects of an organization's infrastructure are adequately protected.

Developed in collaboration with the Center for Internet Security (CIS), CIS RAM provides a structured framework for conducting risk assessments. By following the guidelines outlined in the resource, organizations can gain a comprehensive understanding of their current security status and make informed decisions regarding risk mitigation strategies.

To access the CIS RAM resource, users are required to complete a form, after which they can download the necessary documents. This ensures that the resource is accessible to those who are genuinely interested in utilizing it for their risk assessment needs.

Overall, the CIS RAM resource serves as a valuable tool for organizations seeking to enhance their cybersecurity measures. By leveraging the guidance and resources provided, organizations can strengthen their security posture and better protect their digital assets.

More Information

https://learn.cisecurity.org/cis-ram

Description

This resource is a website that aims to make the connected world a safer place by harnessing the power of the global IT community to protect public and private organizations against cyber threats. The website offers various resources and tools to assist in navigating the cybersecurity audit cycle.

One of the main features of this resource is a webinar titled "How to Navigate the Cybersecurity Audit Cycle." Led by a Chief Information Security Officer (CISO), this webinar provides an overview of how the CIS SecureSuite resources and tools can be utilized to navigate the cybersecurity audit process. By attending this webinar, individuals can gain valuable insights and guidance on effectively managing cybersecurity audits.

Additionally, the website features a blog post titled "4 Reasons Why Assessments Are Key to Your Governance Audits." This blog post highlights the importance of assessments in governance audits and provides four key reasons why they are crucial. By reading this blog post, visitors can enhance their understanding of the significance of assessments in ensuring effective governance and security measures.

Overall, this resource serves as a platform for individuals and organizations to access valuable information, resources, and tools related to cybersecurity audits. By leveraging the expertise and knowledge shared on this website, users can enhance their cybersecurity practices and contribute to making the connected world a safer place.

More Information

https://www.cisecurity.org/

Description

This resource is a website that aims to make the connected world a safer place by harnessing the power of the global IT community to protect public and private organizations against cyber threats. The website offers various resources and tools to assist in navigating the cybersecurity audit cycle.

One of the main features of this resource is a webinar titled "How to Navigate the Cybersecurity Audit Cycle." Led by a Chief Information Security Officer (CISO), this webinar provides an overview of how the CIS SecureSuite resources and tools can be utilized to navigate the cybersecurity audit process. By attending this webinar, individuals can gain valuable insights and guidance on effectively managing cybersecurity audits.

Additionally, the website features a blog post titled "4 Reasons Why Assessments Are Key to Your Governance Audits." This blog post highlights the importance of assessments in conducting governance audits and provides four key reasons why they are crucial. By reading this blog post, visitors can enhance their understanding of the significance of assessments in ensuring effective governance and security measures.

Overall, this resource serves as a platform for individuals and organizations to access valuable information, resources, and tools related to cybersecurity audits. By leveraging the expertise and knowledge shared on this website, users can enhance their cybersecurity practices and contribute to making the connected world a safer place.

More Information

https://www.cisecurity.org/

Description

The EI-ISAC Operations tool is a Center for Internet Security resource that provides information and guidance on how to secure and operate critical infrastructure. The operations team works to identify, assess, and mitigate risks to essential services and functions. The team produces security guidance, tools, and information sharingproducts and services to support operations security. The EI-ISAC also engages with members on operations security matters through training and exercises.

More Information

https://www.cisecurity.org/isac

Description

The CIS Election Security Tools & Resources page contains a range of tools and resources designed to help election officials secure their systems. The tools and resources are grouped into four main categories:

Election Systems: This category includes tools and resources for election administrators to secure their election management systems, voter registration systems, and poll books.

Voting Machines: This category includes tools and resources for election administrators to secure their voting machines and related equipment.

Polling Places: This category includes

More Information

https://www.cisecurity.org/elections

Description

The ISAC Albert Network Monitoring tool is designed to help organizations monitor their networks for security threats. It provides a centralized console for viewing network activity, alerts, and reports. The tool also allows organizations to create custom rules to detect and respond to specific threats.

More Information

https://www.cisecurity.org/services/albert-network-monitoring

Description

The Malicious Domain Blocking and Reporting (MDBR) service is a free, automated, and real-time service designed to protect organizations from malicious domains and websites. This service is made possible by a partnership between the Center for Internet Security (CIS) and Winston-Salem State University (WSSU). The MDBR service uses a combination of domain blacklisting, domain monitoring, and domain reputation analysis to protect organizations from malicious domains and websites. This service is updated daily

More Information

https://www.cisecurity.org/ms-isac/services/mdbr

Description

The MS-ISAC Endpoint Security Services is a cloud-based security platform that provides real-time detection and protection against malware and other threats. The platform uses machine learning and artificial intelligence to analyze traffic and identify threats, and then takes action to protect the endpoint. The service is available to all members of the MS-ISAC, and provides a comprehensive security solution for endpoint devices.

More Information

https://www.cisecurity.org/services/endpoint-security-services