ELI5: What are CIS Benchmarks?
These are like recipe cards for setting up a computer safely. They tell you exactly which settings to turn on and off so your system is as secure as possible.
Definition
CIS Benchmarks are internationally recognized, consensus-based security configuration guidelines published by the Center for Internet Security (CIS). They provide prescriptive guidance for securely configuring operating systems, applications, cloud platforms, and network devices, organized into two implementation levels based on the organization’s security requirements and risk tolerance.
Key Details
- Level 1: basic security settings recommended for all systems; minimal performance impact
- Level 2: more stringent settings for high-security environments; may impact functionality
- Available for Windows, Linux, macOS, major cloud platforms, browsers, and applications
- Free to download; widely used as a baseline for compliance and hardening programs
- Complement STIG (DoD-specific) and vendor-specific hardening guides
Connections
- Parent: hardening — CIS Benchmarks are the primary reference for system hardening
- See also: stig-security-technical-implementation-guide