CIS Critical Security Controls V7

Overview CSC V7 control 19.7 recommends that organisations “Plan and conduct routine incident response exercises and scenarios for the workforce...

Overview CSC V7 control 19.8 recommends that organisations “Create incident scoring and prioritization schema based on known or potential impact...

Overview CSC V7 control 20 recommends that organisations “ Note CSC V7 places this control in the category of “Penetration...

Overview CSC V7 control 20.1 recommends that organisations “Establish a program for penetration tests that includes a full scope of...

Overview CSC V7 control 20.2 recommends that organisations “Conduct regular external and internal penetration tests to identify vulnerabilities and attack...

Overview CSC V7 control 20.3 recommends that organisations “Perform periodic Red Team exercises to test organizational readiness to identify and...

Overview CSC V7 control 20.4 recommends that organisations “Include tests for the presence of unprotected system information and artifacts that...

Overview CSC V7 control 20.5 recommends that organisations “Create a test bed that mimics a production environment for specific penetration...

Overview CSC V7 control 20.6 recommends that organisations “Use vulnerability scanning and penetration testing tools in concert. The results of...

Overview CSC V7 control 20.7 recommends that organisations “Wherever possible, ensure that Red Teams results are documented using open, machine-readable...