The SANS Institute supports the CIS Critical Security Controls and published the Security Leadership Poster: Five Keys for Building a Cybersecurity Program and CIS Controls Version 7.
CIS RAM (Center for Internet Security® Risk Assessment Method) is an information security risk assessment method that helps organizations implement and assess their security posture against the CIS Controls™ cybersecurity best practices. CIS RAM, a free tool, provides step-by-step instructions, examples, templates, and exercises for conducting a cyber risk assessment.
Why a Chicago-Based Cybersecurity Firm Just Released its Prized IP. By Chris Cronin, ISO 27001 Auditor, Partner