Best Practices According to CIS Benchmarks

As part of our security audits, compliance with CIS benchmarks is now also displayed. Read the article to learn more about this new feature and the added value it provides.

What are CIS Benchmarks?

The CIS Benchmarks are best practices developed by the Centre for Internet Security (CIS) for the security configuration of IT systems.

By implementing the CIS Benchmarks, the probability of security incidents is reduced and at the same time compliance with security standards and legal requirements, especially in compliance audits, is ensured.

Components of the CIS Benchmarks

Detailed security guidelines: The benchmarks contain specific configuration guidelines for various IT systems and applications. These guidelines are designed to minimize security vulnerabilities and increase the robustness of the systems.
Justifications and explanations: Each policy is accompanied by an explanation of why it is important and what potential risks it mitigates. This helps users to understand the importance of each configuration measure.
Implementation instructions: The benchmarks provide detailed instructions on how to implement the recommended configuration changes. This makes it easier for IT administrators to implement the best practices in their systems.
Assessment methods: They also include methods for assessing a system's compliance with the benchmarks. This allows organizations to review the current security status of their IT infrastructure and identify improvement measures.

Integration Into the Platform

New "Best Practices" Tab in the Customer Menu

In the customer menu under Technical Details, "Best Practices", we show the extent to which the CIS Benchmarks are met.

When a benchmark is expanded, a detailed description and explanation of why this control is necessary appears. The possible effects on the targets or users and the solution are also described.

A breakdown of the targets shows which targets are compliant and which targets are non-compliant. It is possible to ignore the control for individual targets - the target then appears as "manually compliant" and can be hidden. By clicking on the download button, the Best Practices, whether filtered or complete, can be exported.

Compliance Score in the Security Dashboard

Another new feature is the Compliance Score in the Security Dashboard, which shows you the percentage of all controls for all targets that are fulfilled.

CIS Benchmarks vs Vulnerabilities

In contrast to vulnerabilities, which can be actively exploited and have a direct impact on the rating, low compliance with the CIS Benchmarks has no impact on the rating.

Advantages of the New Feature

Security improvement: The benchmarks aim to increase the security of IT systems by identifying potential vulnerabilities and suggesting specific configuration measures.
Standardization: They provide a standardized approach to security configuration that can be applied by organizations worldwide to ensure a consistent level of security.
Compliance: The benchmarks help organizations meet regulatory and legal requirements by adhering to security best practices.

Teresa Leonhartsberger

August 23, 2024

Category

Feature

Might be also interesting

Guide

IT Security Through System Hardening: What You Need to Know as an MSP

System hardening is an essential process for protecting your customers' IT infrastructure. But what exactly is system hardening and why is it so important?

September 2, 2024

Guide

From IT Service Provider to MSP: Why lywand is The Ideal Solution

This article highlights the differences between the traditional IT service model and the Managed Service Provider (MSP) approach. It explains the advantages of the MSP approach and how the transition from a traditional IT service provider to an MSP can be successfully managed.

July 17, 2024

Press announcement

SYNAXON AG and Lywand Software GmbH announce new collaboration

SYNAXON is expanding its own managed services portfolio with a cyber security platform based on the proven technology of Lywand Software GmbH.

June 20, 2024

Purpose	So that the user's cookie preferences can be taken into account, these are stored in the cookies.
Data	Accepted or rejected cookie categories
Originator	Lywand Software GmbH
Privacy Policy	lywand.com/datenschutzerklaerung

Purpose	This web analytics tool allows us to compile user statistics about your website activity and to best tailor our website to your interests.
Data	anonymized IP address, pseudonymized user identification, date and time of the request, amount of data transferred incl. message as to whether the request was successful, browser used, operating system used, website from which access was made.
Originator	Google Ireland Limited
Privacy Policy	https://policies.google.com/privacy

Purpose	Representation of the company's location using Google's map service.
Data	Date and time of visit, location information, IP address, URL, usage data, search terms, geographic location.
Originator	Google Ireland Limited
Privacy Policy	https://policies.google.com/privacy

Purpose	Convenient appointment scheduling via Calendly directly on the website.
Data	Appointment information, calendar information, information from third-party software providers, payment information, chatbot data, marketing information, log & device data, cookie data, usage data
Originator	Calendly LLC
Privacy Policy	calendly.com/privacy

Purpose	This data processing is performed by YouTube to ensure the functionality of the player.
Data	Device information, IP address, referrer URL, viewed videos
Originator	Google Ireland Limited
Privacy Policy	https://policies.google.com/privacy

Cookie Settings