This episode of the Cybersecurity Weekly Podcast is Part 10 of our series on the Center for Internet Security Top 20 Controls. Here's a quick list of where we're at:
1) Inventory and Control of Hardware Assets
2) Inventory and Control of Software Assets
3) Continuous Vulnerability Management
4) Controlled Use of Administrative Privileges
5) Secured Configuration of Hardware/Software (on Mobile Devices, Laptops, Workstations and Servers)
6) Maintenance, Monitoring, and Analysis of Audit Logs
7) Email and Web Browser Protections
8) Malware Defenses
9) Limitation and Control of Network Ports, Protocols, and Services 10) Data Recovery Capability
In this episode, Fred and Rob discuss Data Recovery Capability, the processes and tools used to back up your data. This is the fourth Foundational CIS Control and focuses on backing up and recovering your data as quickly as possible. Data Recovery Capability is most impactful when a company has taken action against the first nine CIS Controls (following the CIS Top 20 Cybersecurity Controls).
Your company's most valuable asset is data. If the data is lost due to a disaster, crisis, or criminal activity, your company will likely have a long road to recovery. That's why backing up your data is critical. Having a plan in place to back up your data and quickly recover that data if something happens is a step many companies don't take. Anybody can create a plan with the right support, tools, and information.
You can implement these controls yourself, but it may cost you a substantial amount of time, money, and effort. There are Cybersecurity experts who specialize in getting these controls set up for hundreds of organizations.
Listen to the full episode to learn how your business can begin following the Center for Internet Security Top 20 Controls and make your company more secure.
We'd love to hear your feedback. If you have any questions, you can text us at 423-697-9528 or email email@example.com.
This episode discusses Control Ten of the CIS (Center for Internet Security) "Top 20 Controls." The Top 20 Controls are a set of prioritized best practices designed to help organizations protect themselves from cyber-attacks. It is a framework for every organization, whether you have a full department of IT support or don't have security programs or measures in place. You can learn more about the 20 CIS Controls here.