CIS Secure Suite

Center for Internet Security Secure Suite

Indiana University has access to the Center for Internet Security (CIS) Secure Suite program. IT Staff will find these tools useful in improving the security of systems they maintain. With widespread use of the benchmarks, we'll improve the overall security posture at IU.

The CIS Secure Suite provides a consensus-based set of industry best practices that helps organizations assess and improve the security of their computer systems. CIS provides a number of resources such as configuration benchmarks, automated configuration assessment tools as well as security metrics and security software product certifications.

CIS Secure Suite program is an independent authority that facilitates the collaboration of public and private industry experts to achieve consensus on practical and actionable solutions. The resources can be used to help meet compliance requirements for FISMA, PCI-DSS, HIPAA, and other relevant statutes or standards.

Registration

Any interested Indiana University employee may register for a user account on the CIS Benchmarks member community site. Employees who want to use the service must register individually for a personal account using their IU email address.

To Register, please go to the CIS Workbench page, click on Register Now and enter the requested information. Make sure you do NOT use your IU passphrase. Once you submit the information, you will receive a validation request and once completed, you will receive a notice of your log-in credentials for the member community site.

CIS Benchmarks Resources

You can manage your profile settings by clicking the ‘Profile’ link in the upper right hand corner of the CIS Workbench. From there you can update your settings such as password, newsletter preference, and your privacy settings.

All member-only resources from PDFs to CIS-CAT to web webcasts can be found under the ‘Downloads’ tab. To Access the member-only resources, log into the CIS Workbench and click ‘Downloads’.

You can, and are encouraged, to actively participate in member and community areas, such as the Benchmark Wish List, CIS-CAT Beta Testing, CIS-CAT Discussion and Member Site Feedback. From the CIS Workbench, select ‘Profile’, ‘Options’, and ‘Manage Communities’.

To view the release dates for Benchmarks currently in consensus development, visit CIS Workbench. Here you will find a list of active communities, start and projected end dates for each Benchmark consensus effort, Benchmark Team leader(s), open issues and how to get involved in a community.

CIS-CAT is a host-based configuration assessment tool that gives a fast, detailed assessment of target systems' conformance to CIS Benchmarks. It includes both a command-line (CLI) and a graphical user interface (GUI). CIS-CAT is available from the "Downloads" section of the CIS Workbench.

CIS Secure Suite

Center for Internet Security Secure Suite

Registration

CIS Benchmarks Resources

Managing your profile

Downloads

Joining a community

Benchmark roadmap

Information Security & Policy resources