Technical Articles

What is the difference between CIS and NIST controls ?

The Center for Internet Security (CIS) controls are a set of best practices and recommendations for improving the security of networks, systems, and data. They are designed to be technology-neutral and can be implemented across a wide range of organizations, including small businesses, medium-sized businesses, and large enterprises. CIS controls are typically focused on the technical aspects of cybersecurity, providing prescriptive steps that organizations can implement to secure their systems and data.

On the other hand, the National Institute of Standards and Technology (NIST) Special Publication 800-53 controls are part of the NIST's Information Technology Risk Management Guide. They are designed to help organizations manage and mitigate cybersecurity risks, including both technical and operational aspects of security. NIST controls have a broader scope, encompassing technical, operational, and managerial aspects of security.

The key differences between CIS and NIST controls are their scopes and the level of detail they provide. While both frameworks are intended to improve the security of organizations, CIS controls are typically more focused on the technical aspects of cybersecurity, providing specific recommendations for securing different aspects of an organization's systems and data. In contrast, NIST controls have a more comprehensive scope, covering both technical and operational aspects of security and providing recommendations for risk management.

In conclusion, while both CIS and NIST controls are designed to improve the security of organizations, they have notable differences in their scopes and the level of detail they provide. organizations should carefully consider the scope and level of detail of each control before implementing it to ensure that their systems and data are protected to the appropriate level.

CONTACT US

Contact: Nina She

Phone: +86-13751010017

E-mail: info@iec-equipment.com

Add: 1F Junfeng Building, Gongle, Xixiang, Baoan District, Shenzhen, Guangdong, China

Scan the qr codeclose
the qr code