The CIS Critical Security Controls are the recommended set of actions for cyber defence that provide specific and actionable ways to stop today’s most pervasive and dangerous attacks. A principal benefit of the Controls is that they prioritize and focus a smaller number of actions with high pay-off results.
The Controls are effective because they are derived from the most common attack patterns highlighted in the leading threat reports and vetted across a very broad community of government and industry practitioners. They were created by the people who know how attacks work – NSA Red and Blue teams, the US Department of Energy nuclear energy labs, law enforcement organizations and some of the nation’s top forensics and incident response organizations.
Paradyn Security Gap Analysis Services:
Paradyn have worked with a number of customers to successfully implement CIS Control backed security management systems and as a result are in a position to offer a three stage security gap analysis consultancy service to our clients. During this process we review your IT infrastructure estate against the 170+ CIS Controls to understand where the gaps are in your organisations cyber security systems and policies.
We then work with you to prioritise an implementation plan that puts you back in control of your organisations security in a phased basis.
Stage 1: Onsite Workshop
Paradyn security consultant will work with your ICT team to understand current implemented ICT controls, systems and processes.
Stage 2: Offsite Report Writing
Using international best practice and next generation security implementation solutions, we will provide you with a written Business Risk report.
Stage 3: Gap Analysis Presentation
Paradyn security team to present the Business Risk report and run a workshop to facilitate more detailed Q&A and a recommended phased implementation & remediation plan.
High Level CIS Program Components
All CIS implementation strategies, require a combination of consultative, technological and monitoring services and solutions to be effective. Our clients benefit from Paradyn’s holisitic approach to security solution provision as we are able to bring value to each of the high level program components pictured above.