CIS Controls

Definition

The CIS Controls are a prioritized set of 18 security measures from the Center for Internet Security. They are considered a practical starting point for organizations looking to improve their cybersecurity.

The CIS Controls are divided into three implementation groups (IG1, IG2, IG3) based on the size and risk profile of the organization. IG1 contains the most essential measures for basic protection.

Related terms

ISO 27001 NIS2 NIST CSF (Cybersecurity Framework)
← Back to glossary