The Center for Internet Security (CIS) officially launched CIS Critical Security Controls (CIS Controls) v8, which was enhanced to keep up with evolving technology (modern systems and software), evolving threats, and even the evolving workplace.

CIS Controls v8.1 help you keep on top of your evolving workplace, the technology you need to support it, and the threats confronting those systems. It places specific emphasis on moving to a hybrid or fully cloud environment and managing security across your supply chain.

This latest version, CIS Controls v8.1, includes updated alignment to evolving industry standards and frameworks, revised asset classes and Safeguard descriptions, as well as the addition of the “Governance” security function.

Jan 6, 2025 · With v8, CIS enhanced its Controls to address modern threats to systems and software. Increases in cloud-based computing, virtualization, mobility, outsourcing, work-from-home, and changes in attack tactics prompted the update.

CIS Controls v8, released in 2021, streamlined the security framework, reducing the number of controls from 20 to 18 and aligning them with modern IT environments, including cloud and hybrid infrastructures.

Oct 22, 2021 · CIS RAM 2.0, for instance, includes a simplified CIS RAM worksheet for IG1, plus additional modules tailored to developing key risk indicators using quantitative analysis. CIS Controls Mobile Companion Guide—The guide helps companies implement consensus-developed best practices using CIS Controls v8 for phones, tablets, and mobile applications.

The guidelines consist of 18 (originally 20) key actions, called critical security controls (CSC), that organizations should implement to block or mitigate known attacks. The controls are designed so that primarily automated means can be used to implement, enforce and monitor them. [3]

Dec 1, 2023 · Need a CIS Controls Assessment? The Center for Internet Security (CIS) has officially launched version 8 of the CIS Controls. This release represents a comprehensive revision of the CIS Controls (v7) and contains updated and simplified guidelines to streamline and maximize security.

Feb 13, 2025 · CIS Controls v8 is a framework that has undergone significant updates to address the challenges of modern cybersecurity. It places a stronger emphasis on mitigating new risks such as those associated with cloud environments, supply chain security, and data protection.

Below, we explore the top 20 Critical Security Controls and their requirements. In response to the changing technology, work, and threat landscape, The Center for Internet Security (CIS) has launched CIS Top 18 Controls (v8).