Tag Archive for: CIS®
Center for Internet Security (CIS) Releases Community Defense Model v2.0 for Cybersecurity
EAST GREENBUSH, N.Y., Sept. 29, 2021 /PRNewswire/ — Enterprises naturally want to know how effective the CIS Critical Security Controls® (CIS Controls®) – 18 top-level Controls containing 153 Safeguards that provide a prioritized path to improve an enterprise’s cybersecurity posture – are against the most prevalent cyber-attacks. The Center for Internet Security, Inc. (CIS®) answers that question and more through its Community Defense Model (CDM) v2.0, released today.
The model shows that the CIS Controls defend against approximately 86% of all ATT&CK (sub) techniques found in the MITRE ATT&CK® framework. Furthermore, Implementation Group 1 (IG1) of the Controls, the definition of essential cyber hygiene (formerly basic cyber hygiene), provides enterprises a high level of protection, positioning them to defend against the top five attack types – malware, ransomware, web application hacking, insider privilege and misuse, and targeted intrusions.
Implementation Group 1 (IG1), the group that is least costly and difficult to implement, are the Safeguards that every enterprise should deploy. For enterprises that face more sophisticated attacks or that must protect more critical data or systems, these Safeguards also provide the foundation for the other two Implementation Groups (IG2 and IG3).
“This year’s CDM findings strongly reinforce the value of a relatively small number of well-chosen and essential defensive steps found in IG1,” said Curtis Dukes, CIS Executive Vice President and General Manager, Security Best Practices. “As such, enterprises should aim to start with IG1 to obtain the highest value and work up to IG2 and IG3, as appropriate.”
The findings in the CDM demonstrate the security value of the CIS Safeguards against the top five attack types:
- Malware: 77% of Malware ATT&CK (sub-)techniques can be defended through implementation of IG1.
- Ransomware: 78% of Ransomware ATT&CK (sub-)techniques are defended through implementation of IG1.
- Web Application Hacking: 86% of Web Application Hacking ATT&CK (sub-)techniques are defended through implementing IG1 Safeguards.
- Insider Privilege and Misuse: IG1 defends against 86% of the Insider Privilege and Misuse…
CIS Mobile Hires Industry Veteran Chris Chroniger to Lead Secure Mobility Support Efforts
ASHBURN, Va., July 8, 2021 /PRNewswire/ — CIS Mobile, a mobile security leader, today announces the hiring of veteran industry executive Christopher (Chris) Chroniger, to develop and oversee its customer-facing and program management efforts. Chris will be responsible for the development, implementation and operation of all customer support and delivery activities for the rapidly growing altOS secure mobility platform. In this role, Chris will report directly to Dr. Bill Anderson, President of CIS Mobile.
In a statement, Anderson noted “Chris brings many years of experience to our altOS platform. Our unique combination of a modified Android OS supported by a powerful management console has gathered an increasing amount of attention from mission-driven customers. CIS Mobile has seen significant growth over the past year as customers recognize the risk and vulnerabilities found in consumer-grade mobile security. Chris brings a great skillset to our team and will help us scale our sales, support and operations activities.”
Prior to joining CIS Mobile, Chroniger served as Chief Technology Officer for GAP Solutions – where he was responsible for the development, implementation and operation of the company’s solutions and technology services. In his work at GAP – a SystemOne Company – Chris led successful new business capture and delivery across multiple areas of expertise. Chris also established GAP’s Communities of Interest (COI) to support internal requirements for collaboration and team engagement. Chris was a key business driver for GAP’s work at the US Food and Drug Administration’s Enterprise Services and Solutions Division Modernization Program.
Prior to his work at GAP, Chris served as Chief Technology Officer for Maximus (formerly Acentia), NetStar-1 and Vice President, Strategic Technologies & Services for Dimension Data US (formerly TimeBridge Technologies). Chris also held key technological support roles at the Executive Office of the President and NASA.
Chris is an active member at ACTI-IAC, Washington Executive IoT Council and previously was Chair of the IPv6 Working Group.
About CIS Mobile
CIS Mobile is a subsidiary of CIS Secure, an industry leader and global…