The Center for Internet Security and CREST Collaborate to Advance Global Cybersecurity
EAST GREENBUSH, N.Y., June 28, 2023 — The Center for Internet Security, Inc. (CIS®) and CREST, an international not-for-profit accreditation and certification body, have announced a joint initiative to enhance security and resilience in order to achieve better global cybersecurity. This partnership aims to address the escalating cyber threats faced worldwide by launching the CIS Controls Accreditation program. The program offers organizations a way to demonstrate that their cybersecurity practices align with the best practice guidance of the CIS Critical Security Controls (CIS Controls) and are endorsed by the rigorous standards of CREST accreditation.
Prioritizing Security Posture in an Evolving Threat Landscape
In a world where cyber threats are increasing at unprecedented levels, establishing and maintaining a strong security posture has become a high priority for businesses, governments, and regulatory bodies. The CIS Controls Accreditation program provides an exclusive opportunity for CIS SecureSuite and CREST Members to offer consulting services to end-user organizations. These services enable organizations to demonstrate the implementation of security best practices and undergo external assessment according to the established training and validation defined by both CIS and CREST.
Enhancing Security Monitoring and Compliance Strategies
Tom Brennan, Executive Director of CREST Americas Region, emphasizes the importance of the CIS Controls and CREST accreditations in enabling joint members to meet risk and compliance requirements while continuously monitoring their security posture. The combination of the internationally recognized CIS Controls and the methodologies provided by CREST empowers security professionals to enhance security infrastructure through observation, testing, and improvement.
The Significance of CIS and CREST Collaboration
The CIS Critical Security Controls, globally recognized as a set of best practices for improving cybersecurity posture, have been paired with a program delivering accredited consulting services for the first time through this collaboration. Curtis Dukes, CIS Executive Vice President and General Manager of Security Best Practices, sees this collaboration as a major step forward in the ongoing efforts to secure enterprises against current and emerging threats.
About the Center for Internet Security (CIS)
The Center for Internet Security, Inc. (CIS) is a community-driven nonprofit organization that focuses on collaboration and innovation to make the connected world safer for individuals, businesses, and governments. CIS is responsible for the globally recognized CIS Critical Security Controls and CIS Benchmarks, which provide best practices for securing IT systems and data. These standards are continuously evolved with the involvement of a global community of IT professionals. CIS also offers products and services to proactively safeguard against emerging threats, such as the CIS Hardened Images, which provide secure, scalable computing environments in the cloud. Additionally, CIS houses the Multi-State Information Sharing and Analysis Center (MS-ISAC) and the Elections Infrastructure Information Sharing and Analysis Center (EI-ISAC), two vital resources for cyber threat prevention, protection, response, and recovery for U.S. State, Local, Tribal, and Territorial government entities. To learn more, visit CISecurity.org.
About CREST
CREST is an international not-for-profit membership body representing the global cybersecurity industry. Its mission is to create a secure digital world for all through open collaboration and by addressing the needs of contributors, users, and solution providers. CREST focuses on leveraging best practices and delivering professional certifications to the cybersecurity industry. With over 350 member companies operating across dozens of countries, CREST accredits organizations and certifies professionals worldwide, including those in the government, regulator, academic, training, and professional body sectors. For more information, please visit Editorial and Advice
The collaboration between the Center for Internet Security and CREST marks a significant development in the field of cybersecurity. As cyber threats continue to evolve and pose challenges to individuals, businesses, and governments globally, the need for robust security measures becomes paramount. The CIS Controls Accreditation program provides organizations with an opportunity to validate their implementation of security best practices and undergo external assessment, ensuring their security posture meets the highest standards set forth by CIS and CREST. By combining the globally recognized CIS Critical Security Controls with CREST accreditations, organizations gain an accelerated path to meet risk and compliance requirements and an effective methodology for continually monitoring and enhancing their security infrastructure. This collaboration not only enhances the ability of security professionals to safeguard enterprises but also provides reassurance to customers and partners that cybersecurity is a top priority. As the cyber threat landscape becomes increasingly complex, organizations are encouraged to take advantage of the CIS Controls Accreditation program. It offers access to qualified consultants who can provide expert guidance on implementing and assessing security best practices. By leveraging the expertise of CIS and CREST, organizations can strengthen their security posture, mitigate vulnerabilities, and effectively respond to emerging threats. It is important for organizations to prioritize the adoption of best practices and continuously update their security measures to stay ahead of cybercriminals. Collaboration between industry leaders, such as CIS and CREST, not only supports a more secure digital world but also fosters the sharing of knowledge, innovation, and collaboration that are vital in the fight against cyber threats. As individuals and organizations rely more on digital technologies and the internet, it is essential to prioritize cybersecurity. Organizations must invest in robust security measures, regularly update their systems, and ensure that employees are trained to identify and respond to potential threats. Additionally, individuals should be mindful of their online activities, protect their personal information, and stay informed about the latest cybersecurity best practices.
<< photo by FLY:D >>
The image is for illustrative purposes only and does not depict the actual situation.
You might want to read !
- Tech Talent in High Demand: Exploring Europe’s Strong Employer Demand for Technology Workers
- The Rise of Sophisticated Browser-Based Social Engineering Tactics: Insights from WatchGuard Threat Lab
- Ensuring Operational Stability: TXOne Networks’ Stellar Solution Benefits Diverse Industries
- Exploring Steve Jobs’s Formative Beginnings: Unveiling His First Job
- The Rise of Cyware: How $30M Investment Fuels Threat Intel Infrastructure Tech
- Securing CI/CD Environments: Insights from CISA and NSA Guidance
- The Urgent Need for K-12 Cybersecurity Education: Mitigating Cyberattacks on Schools
- Federal Agencies Receive Directive from CISA to Secure Internet-Exposed Devices
- Exploring the Implications of Chrome’s Zero-Day Vulnerability and Urging Users to Check their Versions Now
