Ops 401: Class 04

This topic matters as it relates to what I'm studying in this module because I am learning about how to best securely configure IT systems, software, networks, and/or cloud infrastructure.

Three benefits of following CIS Benchmarks are:

• Regularly updated, step-by-step guidance for securing every area of the IT infrastructure.
• A flexibility template for securely adopting new cloud services and executing digital transformation strategies.
• Easy-to-deploy configurations for improved operational efficiency and sustainability.

There are seven core categories of CIS Benchmarks:

• Operating systems benchmarks
• Server software benchmarks
• Cloud provider benchmarks
• Mobile device benchmarks
• Network device benchmarks
• Desktop software benchmarks
• Multi-function print device benchmarks

To convince a manager that applying CIS Benchmarks could fast-track an organization's compliance, one could explain how CIS Benchmarks align closely with or map to security and data privacy regulatory frameworks, including NIST Cybersecurity Framework, the PCI DSS, HIPAA, and ISO/EIC 2700. This means that adhering to CIS Benchmarks can make significant progress toward compliance, and CIS Controls and CIS Hardened Images can help support an organization's compliance with GDPR. Additionally, following CIS Benchmarks offers regularly updated, step-by-step guidance for securing every area of the IT infrastructure, compliance management consistency, and easy-to-deploy configurations for improved operational efficiency and sustainability.

Things I want to know more about are if there are any other systems to better configure/secure IT systems.

References

What are CIS benchmarks? IBM. Retrieved April 19, 2023 from CIS Benchmarks