The cybersecurity landscape is constantly evolving, demanding a proactive and adaptable approach to risk management. The release of NIST Cybersecurity Framework (CSF) version 2.0 and CIS Critical Security Controls version 8.1 represent significant advancements in providing a structured and prioritized pathway to improved cybersecurity posture. This brief highlights the importance of these frameworks, their interrelationship, and why Managed Service Providers (MSPs) and their Small and Medium-sized Business (SMB) clients should prioritize adoption.
¶ NIST Cybersecurity Framework (CSF) Version 2.0
The NIST CSF provides a voluntary framework for organizations to manage and reduce their cybersecurity risk. CSF 2.0 builds upon its predecessor, incorporating valuable feedback and reflecting the current threat landscape. Its core components are organized around five functions:
|
Identify |
Protect |
Detect |
Respond |
Recover |
|---|---|---|---|---|
|
Understanding the organization's assets, systems, data, and risks. |
Developing and implementing safeguards to limit or contain the impact of a cybersecurity event. |
Identifying the occurrence of a cybersecurity event. |
Taking action regarding a detected cybersecurity event. |
Restoring any capabilities or services that were impaired due to a cybersecurity event. |
| Govern: The crucial addition in CSF 2.0 focuses on establishing the organization's cybersecurity program governance, including strategy, risk management, and compliance efforts. This function emphasizes the importance of leadership, policy, and continuous improvement. | ||||
¶ CIS Critical Security Controls Version 8.1
The CIS Controls provide a prioritized set of cybersecurity best practices, offering a practical approach to implementing effective cyber defenses. Version 8.1 aligns with CSF 2.0, incorporating the "Govern" function and clarifying existing safeguards. Key elements include:
|
Controls: |
Safeguards: |
Implementation Groups (IGs): |
|---|---|---|
|
High-level cybersecurity objectives, addressing broad security areas. |
Specific, actionable recommendations to achieve the control objectives. These provide concrete steps organizations can take to improve their security. |
Three groups (IG1, IG2, and IG3) categorize safeguards based on the level of effort and resources required for implementation, allowing organizations to tailor their approach to their specific needs and capabilities. |
|
The Interrelationship:
|
||
The updated NIST CSF 2.0 and CIS Controls v8.1 offer a powerful combination for enhancing cybersecurity. MSPs, by adopting and implementing these frameworks, can provide enhanced security services and effectively demonstrate value to their SMB clients, contributing to a more secure and resilient digital landscape. The clear alignment between these frameworks streamlines the process, making it easier and more effective for both MSPs and SMBs to achieve their cybersecurity objectives.
¶ Exium's Unified Platform: A Holistic Approach to CIS Controls v8.1 Compliance
Exium's unified platform, encompassing SASE, XDR, IAM, and GRC solutions, provides MSPs with a powerful toolset to significantly simplify CIS Controls v8.1 compliance for their SMB clients. This integrated approach goes beyond simply addressing individual safeguards; it creates a holistic security posture that's both effective and efficient. By combining these core capabilities, Exium helps MSPs cover over 60% of the safeguards outlined in CIS Controls v8.1, significantly reducing the complexity and cost associated with achieving and maintaining compliance.
|
|
Key Solution Components and their Contribution to CIS Controls v8.1 Compliance |
|---|---|
| 1 |
SASE (Secure Access Service Edge):
|
| 2 |
XDR (Extended Detection and Response):
|
| 3 |
IAM (Identity and Access Management):
|
| 4 |
GRC (Governance, Risk, and Compliance):
|
| 5 |
Synergistic Effects:
|
¶ Benefits for MSPs and their SMB Clients:
|
Reduced Complexity |
Improved Efficiency |
Cost Savings |
Enhanced Security |
Simplified Compliance |
|---|---|---|---|---|
|
A single, integrated platform simplifies management and reduces the burden of managing multiple, disparate security tools. |
Streamlined workflows and automated processes free up MSP resources, allowing them to focus on higher-value tasks. |
Consolidating security solutions reduces licensing fees and minimizes operational expenses. |
A unified approach delivers comprehensive protection against a wider range of threats. |
Easily demonstrate compliance with CIS Controls v8.1 and other relevant security standards.
|
¶ Achieving CIS Controls v8.1 Compliance with Exium
The table below details all CIS Controls and Safeguards, their corresponding NIST CSF 2.0 security functions and implementation groups (IGs), and how Exium's unified platform contributes to satisfying each safeguard. This comprehensive mapping demonstrates the platform's significant contribution to achieving and maintaining a robust security posture aligned with best practices, ultimately simplifying compliance efforts and strengthening overall cybersecurity.
|
CIS Control |
CIS Safeguard |
Asset Type |
NIST CSF 2.0 Security Function |
IG1 | IG2 | IG3 |
Title |
How Exium contributes to satisfying each safeguard |
|---|---|---|---|---|---|---|---|---|
| 1 |
Inventory and Control of Enterprise Assets |
4/5 |
||||||
| 1 | 1.1 | Devices | Identify |
IG1 |
IG2 |
IG3 |
Establish and Maintain Detailed Enterprise Asset Inventory | |
| 1 | 1.2 | Devices | Respond |
IG1 |
IG2 |
IG3 |
Address Unauthorized Assets | |
| 1 | 1.3 | Devices | Detect |
|
IG2 |
IG3 |
Utilize an Active Discovery Tool |
VAS360: Enhancing Security Posture with Exium's Autonomous Vulnerability Assessment |
| 1 | 1.4 | Devices | Identify |
|
IG2 |
IG3 |
Use Dynamic Host Configuration Protocol (DHCP) Logging to Update Enterprise Asset Inventory | |
| 1 | 1.5 | Devices | Detect |
|
|
IG3 |
Use a Passive Asset Discovery Tool |
- |
| 2 |
Inventory and Control of Software Assets |
4/7 |
||||||
| 2 | 2.1 | Software | Identify |
IG1 |
IG2 |
IG3 |
Establish and Maintain a Software Inventory | |
| 2 | 2.2 | Software | Identify |
IG1 |
IG2 |
IG3 |
Ensure Authorized Software is Currently Supported | |
| 2 | 2.3 | Software | Respond |
IG1 |
IG2 |
IG3 |
Address Unauthorized Software | |
| 2 | 2.4 | Software | Detect |
|
IG2 |
IG3 |
Utilize Automated Software Inventory Tools | |
| 2 | 2.5 | Software | Protect |
|
IG2 |
IG3 |
Allowlist Authorized Software |
- |
| 2 | 2.6 | Software | Protect |
|
IG2 |
IG3 |
Allowlist Authorized Libraries |
- |
| 2 | 2.7 | Software | Protect |
|
|
IG3 |
Allowlist Authorized Scripts |
- |
| 3 |
Data Protection |
5/14 |
||||||
| 3 | 3.1 | Data | Govern |
IG1 |
IG2 |
IG3 |
Establish and Maintain a Data Management Process | |
| 3 | 3.2 | Data | Identify |
IG1 |
IG2 |
IG3 |
Establish and Maintain a Data Inventory |
- |
| 3 | 3.3 | Data | Protect |
IG1 |
IG2 |
IG3 |
Configure Data Access Control Lists |
- |
| 3 | 3.4 | Data | Protect |
IG1 |
IG2 |
IG3 |
Enforce Data Retention |
- |
| 3 | 3.5 | Data | Protect |
IG1 |
IG2 |
IG3 |
Securely Dispose of Data |
- |
| 3 | 3.6 | Data | Protect |
IG1 |
IG2 |
IG3 |
Encrypt Data on End-User Devices |
- |
| 3 | 3.7 | Data | Identify |
|
IG2 |
IG3 |
Establish and Maintain a Data Classification Scheme |
- |
| 3 | 3.8 | Data | Identify |
|
IG2 |
IG3 |
Document Data Flows |
- |
| 3 | 3.9 | Data | Protect |
|
IG2 |
IG3 |
Encrypt Data on Removable Media |
- |
| 3 | 3.10 | Data | Protect |
|
IG2 |
IG3 |
Encrypt Sensitive Data in Transit | |
| 3 | 3.11 | Data | Protect |
|
IG2 |
IG3 |
Encrypt Sensitive Data at Rest |
- |
| 3 | 3.12 | Data | Protect |
|
IG2 |
IG3 |
Segment Data Processing and Storage Based on Sensitivity | |
| 3 | 3.13 | Data | Protect |
|
|
IG3 |
Deploy a Data Loss Prevention Solution | |
| 3 | 3.14 | Data | Detect |
|
|
IG3 |
Log Sensitive Data Access | |
| 4 |
Secure Configuration of Enterprise Assets and Software |
7/12 |
||||||
| 4 | 4.1 | Doc | Govern |
IG1 |
IG2 |
IG3 |
Establish and Maintain a Secure Configuration Process | |
| 4 | 4.2 | Doc | Govern |
IG1 |
IG2 |
IG3 |
Establish and Maintain a Secure Configuration Process for Network Infrastructure | |
| 4 | 4.3 | Devices | Protect |
IG1 |
IG2 |
IG3 |
Configure Automatic Session Locking on Enterprise Assets |
- |
| 4 | 4.4 | Devices | Protect |
IG1 |
IG2 |
IG3 |
Implement and Manage a Firewall on Servers | |
| 4 | 4.5 | Devices | Protect |
IG1 |
IG2 |
IG3 |
Implement and Manage a Firewall on End-User Devices | |
| 4 | 4.6 | Devices | Protect |
IG1 |
IG2 |
IG3 |
Securely Manage Enterprise Assets and Software | |
| 4 | 4.7 | Users | Protect |
IG1 |
IG2 |
IG3 |
Manage Default Accounts on Enterprise Assets and Software |
- |
| 4 | 4.8 | Devices | Protect |
|
IG2 |
IG3 |
Uninstall or Disable Unnecessary Services on Enterprise Assets and Software | |
| 4 | 4.9 | Devices | Protect |
|
IG2 |
IG3 |
Configure Trusted DNS Servers on Enterprise Assets | |
| 4 | 4.10 | Devices | Protect |
|
IG2 |
IG3 |
Enforce Automatic Device Lockout on Portable End-User Devices |
- |
| 4 | 4.11 | Data | Protect |
|
IG2 |
IG3 |
Enforce Remote Wipe Capability on Portable End-User Devices |
- |
| 4 | 4.12 | Data | Protect |
|
|
IG3 |
Separate Enterprise Workspaces on Mobile End-User Devices |
- |
| 5 |
Account Management |
1/6 |
||||||
| 5 | 5.1 | Users | Identify |
IG1 |
IG2 |
IG3 |
Establish and Maintain an Inventory of Accounts |
- |
| 5 | 5.2 | Users | Protect |
IG1 |
IG2 |
IG3 |
Use Unique Passwords | |
| 5 | 5.3 | Users | Protect |
IG1 |
IG2 |
IG3 |
Disable Dormant Accounts |
- |
| 5 | 5.4 | Users | Protect |
IG1 |
IG2 |
IG3 |
Restrict Administrator Privileges to Dedicated Administrator Accounts |
- |
| 5 | 5.5 | Users | Identify |
|
IG2 |
IG3 |
Establish and Maintain an Inventory of Service Accounts |
- |
| 5 | 5.6 | Users | Govern |
|
IG2 |
IG3 |
Centralize Account Management |
- |
| 6 |
Access Control Management |
8/8 |
||||||
| 6 | 6.1 | Doc | Govern |
IG1 |
IG2 |
IG3 |
Establish an Access Granting Process | |
| 6 | 6.2 | Doc | Govern |
IG1 |
IG2 |
IG3 |
Establish an Access Revoking Process | |
| 6 | 6.3 | Users | Protect |
IG1 |
IG2 |
IG3 |
Require MFA for Externally-Exposed Applications | |
| 6 | 6.4 | Users | Protect |
IG1 |
IG2 |
IG3 |
Require MFA for Remote Network Access | |
| 6 | 6.5 | Users | Protect |
IG1 |
IG2 |
IG3 |
Require MFA for Administrative Access | |
| 6 | 6.6 | Software | Identify |
|
IG2 |
IG3 |
Establish and Maintain an Inventory of Authentication and Authorization Systems | |
| 6 | 6.7 | Users | Protect |
|
IG2 |
IG3 |
Centralize Access Control | |
| 6 | 6.8 | Users | Govern |
|
|
IG3 |
Define and Maintain Role-Based Access Control | |
| 7 |
Continuous Vulnerability Management |
5/7 |
||||||
| 7 | 7.1 | Doc | Govern |
IG1 |
IG2 |
IG3 |
Establish and Maintain a Vulnerability Management Process | |
| 7 | 7.2 | Doc | Govern |
IG1 |
IG2 |
IG3 |
Establish and Maintain a Remediation Process | |
| 7 | 7.3 | Software | Protect |
IG1 |
IG2 |
IG3 |
Perform Automated Operating System Patch Management |
- |
| 7 | 7.4 | Software | Protect |
IG1 |
IG2 |
IG3 |
Perform Automated Application Patch Management |
- |
| 7 | 7.5 | Software | Identify |
|
IG2 |
IG3 |
Perform Automated Vulnerability Scans of Internal Enterprise Assets | |
| 7 | 7.6 | Software | Identify |
|
IG2 |
IG3 |
Perform Automated Vulnerability Scans of Externally-Exposed Enterprise Assets | |
| 7 | 7.7 | Software | Respond |
|
IG2 |
IG3 |
Remediate Detected Vulnerabilities | |
| 8 |
Audit Log Management |
12/12 |
||||||
| 8 | 8.1 | Doc | Govern |
IG1 |
IG2 |
IG3 |
Establish and Maintain an Audit Log Management Process | |
| 8 | 8.2 | Data | Detect |
IG1 |
IG2 |
IG3 |
Collect Audit Logs | |
| 8 | 8.3 | Data | Protect |
IG1 |
IG2 |
IG3 |
Ensure Adequate Audit Log Storage | |
| 8 | 8.4 | Data | Protect |
|
IG2 |
IG3 |
Standardize Time Synchronization | |
| 8 | 8.5 | Data | Detect |
|
IG2 |
IG3 |
Collect Detailed Audit Logs | |
| 8 | 8.6 | Data | Detect |
|
IG2 |
IG3 |
Collect DNS Query Audit Logs | |
| 8 | 8.7 | Data | Detect |
|
IG2 |
IG3 |
Collect URL Request Audit Logs | |
| 8 | 8.8 | Data | Detect |
|
IG2 |
IG3 |
Collect Command-Line Audit Logs | |
| 8 | 8.9 | Data | Detect |
|
IG2 |
IG3 |
Centralize Audit Logs | |
| 8 | 8.10 | Data | Protect |
|
IG2 |
IG3 |
Retain Audit Logs | |
| 8 | 8.11 | Data | Detect |
|
IG2 |
IG3 |
Conduct Audit Log Reviews | |
| 8 | 8.12 | Data | Detect |
|
|
IG3 |
Collect Service Provider Logs | |
| 9 |
Email and Web Browser Protections |
2/7 |
||||||
| 9 | 9.1 | Software | Protect |
IG1 |
IG2 |
IG3 |
Ensure Use of Only Fully Supported Browsers and Email Clients |
- |
| 9 | 9.2 | Devices | Protect |
IG1 |
IG2 |
IG3 |
Use DNS Filtering Services | |
| 9 | 9.3 | Network | Protect |
|
IG2 |
IG3 |
Maintain and Enforce Network-Based URL Filters | |
| 9 | 9.4 | Software | Protect |
|
IG2 |
IG3 |
Restrict Unnecessary or Unauthorized Browser and Email Client Extensions |
- |
| 9 | 9.5 | Network | Protect |
|
IG2 |
IG3 |
Implement DMARC |
- |
| 9 | 9.6 | Network | Protect |
|
IG2 |
IG3 |
Block Unnecessary File Types |
- |
| 9 | 9.7 | Network | Protect |
|
|
IG3 |
Deploy and Maintain Email Server Anti-Malware Protections |
- |
| 10 |
Malware Defenses |
4/7 |
||||||
| 10 | 10.1 | Devices | Detect |
IG1 |
IG2 |
IG3 |
Deploy and Maintain Anti-Malware Software | |
| 10 | 10.2 | Devices | Protect |
IG1 |
IG2 |
IG3 |
Configure Automatic Anti-Malware Signature Updates | |
| 10 | 10.3 | Devices | Protect |
IG1 |
IG2 |
IG3 |
Disable Autorun and Autoplay for Removable Media |
- |
| 10 | 10.4 | Devices | Detect |
|
IG2 |
IG3 |
Configure Automatic Anti-Malware Scanning of Removable Media |
- |
| 10 | 10.5 | Devices | Protect |
|
IG2 |
IG3 |
Enable Anti-Exploitation Features |
- |
| 10 | 10.6 | Devices | Protect |
|
IG2 |
IG3 |
Centrally Manage Anti-Malware Software | |
| 10 | 10.7 | Devices | Detect |
|
IG2 |
IG3 |
Use Behavior-Based Anti-Malware Software | |
| 11 |
Data Recovery |
1/5 |
||||||
| 11 | 11.1 | Doc | Govern |
IG1 |
IG2 |
IG3 |
Establish and Maintain a Data Recovery Process | |
| 11 | 11.2 | Data | Recover |
IG1 |
IG2 |
IG3 |
Perform Automated Backups |
- |
| 11 | 11.3 | Data | Protect |
IG1 |
IG2 |
IG3 |
Protect Recovery Data |
- |
| 11 | 11.4 | Data | Recover |
IG1 |
IG2 |
IG3 |
Establish and Maintain an Isolated Instance of Recovery Data |
- |
| 11 | 11.5 | Data | Recover |
|
IG2 |
IG3 |
Test Data Recovery |
- |
| 12 |
Network Infrastructure Management |
7/8 |
||||||
| 12 | 12.1 | Network | Protect |
IG1 |
IG2 |
IG3 |
Ensure Network Infrastructure is Up-to-Date |
Seamless Software Management for Endpoints and Cyber Gateway |
| 12 | 12.2 | Network | Protect |
|
IG2 |
IG3 |
Establish and Maintain a Secure Network Architecture | |
| 12 | 12.3 | Network | Protect |
|
IG2 |
IG3 |
Securely Manage Network Infrastructure | |
| 12 | 12.4 | Doc | Govern |
|
IG2 |
IG3 |
Establish and Maintain Architecture Diagram(s) | |
| 12 | 12.5 | Network | Protect |
|
IG2 |
IG3 |
Centralize Network Authentication, Authorization, and Auditing (AAA) | |
| 12 | 12.6 | Network | Protect |
|
IG2 |
IG3 |
Use of Secure Network Management and Communication Protocols | |
| 12 | 12.7 | Devices | Protect |
|
IG2 |
IG3 |
Ensure Remote Devices Utilize a VPN and are Connecting to an Enterprise’s AAA Infrastructure | |
| 12 | 12.8 | Devices | Protect |
|
|
IG3 |
Establish and Maintain Dedicated Computing Resources for All Administrative Work |
- |
| 13 |
Network Monitoring and Defense |
11/11 |
||||||
| 13 | 13.1 | Network | Detect |
|
IG2 |
IG3 |
Centralize Security Event Alerting | |
| 13 | 13.2 | Devices | Detect |
|
IG2 |
IG3 |
Deploy a Host-Based Intrusion Detection Solution | |
| 13 | 13.3 | Network | Detect |
|
IG2 |
IG3 |
Deploy a Network Intrusion Detection Solution | |
| 13 | 13.4 | Network | Protect |
|
IG2 |
IG3 |
Perform Traffic Filtering Between Network Segments | |
| 13 | 13.5 | Devices | Protect |
|
IG2 |
IG3 |
Manage Access Control for Remote Assets | |
| 13 | 13.6 | Network | Detect |
|
IG2 |
IG3 |
Collect Network Traffic Flow Logs |
Exium's Enhanced Cybersecurity and Network Observability with Netflow |
| 13 | 13.7 | Devices | Protect |
|
|
IG3 |
Deploy a Host-Based Intrusion Prevention Solution | |
| 13 | 13.8 | Network | Protect |
|
|
IG3 |
Deploy a Network Intrusion Prevention Solution | |
| 13 | 13.9 | Network | Protect |
|
|
IG3 |
Deploy Port-Level Access Control | |
| 13 | 13.10 | Network | Protect |
|
|
IG3 |
Perform Application Layer Filtering | |
| 13 | 13.11 | Network | Detect |
|
|
IG3 |
Tune Security Event Alerting Thresholds | |
| 14 |
Security Awareness and Skills Training |
1/9 |
||||||
| 14 | 14.1 | Doc | Govern |
IG1 |
IG2 |
IG3 |
Establish and Maintain a Security Awareness Program | |
| 14 | 14.2 | Users | Protect |
IG1 |
IG2 |
IG3 |
Train Workforce Members to Recognize Social Engineering Attacks |
- |
| 14 | 14.3 | Users | Protect |
IG1 |
IG2 |
IG3 |
Train Workforce Members on Authentication Best Practices |
- |
| 14 | 14.4 | Users | Protect |
IG1 |
IG2 |
IG3 |
Train Workforce on Data Handling Best Practices |
- |
| 14 | 14.5 | Users | Protect |
IG1 |
IG2 |
IG3 |
Train Workforce Members on Causes of Unintentional Data Exposure |
- |
| 14 | 14.6 | Users | Protect |
IG1 |
IG2 |
IG3 |
Train Workforce Members on Recognizing and Reporting Security Incidents |
- |
| 14 | 14.7 | Users | Protect |
IG1 |
IG2 |
IG3 |
Train Workforce on How to Identify and Report if Their Enterprise Assets are Missing Security Updates |
- |
| 14 | 14.8 | Users | Protect |
IG1 |
IG2 |
IG3 |
Train Workforce on the Dangers of Connecting to and Transmitting Enterprise Data Over Insecure Networks |
- |
| 14 | 14.9 | Users | Protect |
|
IG2 |
IG3 |
Conduct Role-Specific Security Awareness and Skills Training |
- |
| 15 |
Service Provider Management |
5/7 |
||||||
| 15 | 15.1 | Users | Identify |
IG1 |
IG2 |
IG3 |
Establish and Maintain an Inventory of Service Providers |
- |
| 15 | 15.2 | Doc | Govern |
|
IG2 |
IG3 |
Establish and Maintain a Service Provider Management Policy | |
| 15 | 15.3 | Users | Govern |
|
IG2 |
IG3 |
Classify Service Providers | |
| 15 | 15.4 | Doc | Govern |
|
IG2 |
IG3 |
Ensure Service Provider Contracts Include Security Requirements | |
| 15 | 15.5 | Users | Govern |
|
|
IG3 |
Assess Service Providers | |
| 15 | 15.6 | Data | Govern |
|
|
IG3 |
Monitor Service Providers | |
| 15 | 15.7 | Data | Protect |
|
|
IG3 |
Securely Decommission Service Providers |
- |
| 16 |
Application Software Security |
6/14 |
||||||
| 16 | 16.1 | Doc | Govern |
|
IG2 |
IG3 |
Establish and Maintain a Secure Application Development Process | |
| 16 | 16.2 | Doc | Govern |
|
IG2 |
IG3 |
Establish and Maintain a Process to Accept and Address Software Vulnerabilities | |
| 16 | 16.3 | Software | Protect |
|
IG2 |
IG3 |
Perform Root Cause Analysis on Security Vulnerabilities | |
| 16 | 16.4 | Software | Identify |
|
IG2 |
IG3 |
Establish and Manage an Inventory of Third-Party Software Components |
- |
| 16 | 16.5 | Software | Protect |
|
IG2 |
IG3 |
Use Up-to-Date and Trusted Third-Party Software Components |
- |
| 16 | 16.6 | Doc | Govern |
|
IG2 |
IG3 |
Establish and Maintain a Severity Rating System and Process for Application Vulnerabilities | |
| 16 | 16.7 | Software | Protect |
|
IG2 |
IG3 |
Use Standard Hardening Configuration Templates for Application Infrastructure |
- |
| 16 | 16.8 | Network | Protect |
|
IG2 |
IG3 |
Separate Production and Non-Production Systems |
- |
| 16 | 16.9 | Users | Protect |
|
IG2 |
IG3 |
Train Developers in Application Security Concepts and Secure Coding |
- |
| 16 | 16.10 | Software | Protect |
|
IG2 |
IG3 |
Apply Secure Design Principles in Application Architectures |
- |
| 16 | 16.11 | Software | Identify |
|
IG2 |
IG3 |
Leverage Vetted Modules or Services for Application Security Components |
- |
| 16 | 16.12 | Software | Protect |
|
|
IG3 |
Implement Code-Level Security Checks |
- |
| 16 | 16.13 | Software | Govern |
|
|
IG3 |
Conduct Application Penetration Testing | |
| 16 | 16.14 | Software | Protect |
|
|
IG3 |
Conduct Threat Modeling | |
| 17 |
Incident Response Management |
7/9 |
||||||
| 17 | 17.1 | Users | Respond |
IG1 |
IG2 |
IG3 |
Designate Personnel to Manage Incident Handling | |
| 17 | 17.2 | Doc | Govern |
IG1 |
IG2 |
IG3 |
Establish and Maintain Contact Information for Reporting Security Incidents | |
| 17 | 17.3 | Doc | Govern |
IG1 |
IG2 |
IG3 |
Establish and Maintain an Enterprise Process for Reporting Incidents | |
| 17 | 17.4 | Doc | Govern |
|
IG2 |
IG3 |
Establish and Maintain an Incident Response Process | |
| 17 | 17.5 | Users | Respond |
|
IG2 |
IG3 |
Assign Key Roles and Responsibilities | |
| 17 | 17.6 | Users | Respond |
|
IG2 |
IG3 |
Define Mechanisms for Communicating During Incident Response | |
| 17 | 17.7 | Users | Recover |
|
IG2 |
IG3 |
Conduct Routine Incident Response Exercises |
- |
| 17 | 17.8 | Users | Recover |
|
IG2 |
IG3 |
Conduct Post-Incident Reviews |
- |
| 17 | 17.9 | Doc | Recover |
|
|
IG3 |
Establish and Maintain Security Incident Thresholds | |
| 18 |
Penetration Testing |
5/5 |
||||||
| 18 | 18.1 | Doc | Govern |
|
IG2 |
IG3 |
Establish and Maintain a Penetration Testing Program | |
| 18 | 18.2 | Network | Detect |
|
IG2 |
IG3 |
Perform Periodic External Penetration Tests | |
| 18 | 18.3 | Network | Protect |
|
IG2 |
IG3 |
Remediate Penetration Test Findings | |
| 18 | 18.4 | Network | Protect |
|
|
IG3 |
Validate Security Measures | |
| 18 | 18.5 | Network | Detect |
|
|
IG3 |
Perform Periodic Internal Penetration Tests | |
¶ Conclusion
By leveraging Exium's unified platform, MSPs can effectively empower their SMB clients to achieve and maintain a strong cybersecurity posture, significantly reducing their risk and improving their overall operational efficiency. This integrated approach positions both MSPs and their clients for success in today's challenging cybersecurity landscape.
To learn more about implementing SASE, XDR, IAM/ MFA, and GRC for your organization and explore tailored solutions that meet your unique requirements, contact Exium at partners@exium.net for a consultation or demonstration. If you are ready to get started, check out our testing and onboarding process.