CIS 20

One Stop Shop

CIS Controls were designed to create a workflow of best practices to mitigate the most common attacks known on the market. With CIS’ recent release of version 7.1, CyberCompass® now integrates these Top 20 controls . Our automated cyber risk management platform simplifies and reduces the effort for clients and consulting firms to perform CCPA, CIS-20, GDPR, HIPAA, NIST SP800-171, NYDFS and SECURETexas assessments affordably.

CyberCompass® has implemented all three implementation groups, IG1, IG2 and IG3 of the CIS Top 20 Controls in the platform. We have also created IG1.5 for companies in between the IG1 and IG2 needs

About CIS 20

CIS® (Center for Internet Security, Inc.) is a forward-thinking, non-profit entity that harnesses the power of a global IT community to safeguard private and public organizations against cyber threats. The CIS Controls and CIS Benchmarks are the global standard and recognized best practices for securing IT systems and data against the most pervasive attacks. These proven guidelines are continuously refined and verified by a volunteer, global community of experienced IT professionals. 

It has greatly improved our ability to keep our compliance manuals, projects, audits and policies organized. Having a one-stop place for everything compliance related is fantastic.

Richard Hughes, South Texas Spinal Clinic

CyberCompass® automates compliance with built-in expertise that translates CIS 20 government requirements into layman’s terms. It does most of the heavy lifting with the analysis and compliance documentation to streamline compliance workflow.

 It is cloud-based, so it can be accessed anywhere with no software download. You don’t have to be a CIS 20 or cybersecurity expert to use CyberCompass®.

Our automation can save your firm over 400 hours in twelve months on becoming and staying compliant.

  • Answer one set of simple yes/no questions that meets CIS 20 regulations
  • Flexibility to start and stop – CyberCompass® saves your progress
  • Compliance gap report to gain visibility into your non-compliance and top priorities
  • Built in step-by-step guide to fix issues and get compliant quickly
  • CyberCompass® online vault to save your “body of evidence” in one place
  • Complete required training, included in the tool.
  • Monitor your compliance for 12 months with dashboards and reporting

How CyberCompass® works