CIS Control 10 (10.1) Ensure Regular Automated Backups Details Implementation Group 1 – Does the Organization have a defined backup policy which states that systems are backed-up at...
CIS Control 10 (10.2) Perform Complete System Backups Details Implementation Group 1 – Are key systems being backed up on a regular basis? Supportive Information The following resource...
CIS Control 10 (10.4) Protect Backups Details Implementation Group 1 – Are backups protected via physical security or encryption when they are stored or moved across...
CIS Control 2 (2.1(b)) Maintain and Inventory of Authorized Software Details Implementation Group 1 – Does the Organization have an established policy defining a timeframe to to remediate software issues,...
CIS Control 3 (3.4(a)) Deploy Automated Operating System Patch Management Tools Details Implementation Group 1 – Does the organization have a policy in place which dictates how Operating Systems are kept...
CIS Control 3 (3.4(b)) Deploy Automated Operating System Patch Management Tools Details Does the organization have any exceptions in place for any endpoint devices as it applies to patches being up...
CIS Control 3 (3.4(c)) Deploy Automated Operating System Patch Management Tools Details OPTIONAL: Does the organization have a policy in place that dictates the required timeframe that patches must be applied...
CIS Control 10 (10.5) Ensure All Backups Have at Least One Offline Backup Destination Details Implementation Group 1 – Does the organization store at least one full backup offline (that is not accessible from...
CIS Control 3 (3.6(a)) Deploy Automated Software Patch Management Tools Details Does the organization have a policy in place which dictates how Authorized Software is kept up to date? Supportive...
CIS Control 1 (1.4) Maintain Detailed Asset Inventory Details Implementation Group 1 – Does the organization have an established policy or procedure detailing how assets/devices are added or...