Door Ferry Stelte
As a consultancy firm we apply best practices to tune the environments conform vendor best practices to improve the user experience. We also look at the security perspective of the business. That is why we use the CIS benchmarks to audit and apply at our customers.
We use CIS Benchmarks during design phase, during implementation and we use the benchmark when we are asked for a second opinion. This way we can help our customers get the safest (to meet their requirements) and best performing (to meet their requirements) workspace, because we don’t only design for change and performance but also for security!
But what is CIS?
CIS is the Center for Internet Security. The CIS is an independent non-profit organization with a mission to provide a secure online experience for all. CIS Benchmarks and CIS controls are based on consensus. These guides are curated by security practitioners focused on performance, not profit.
The security best practices are referenced global standards verified by an objective, voluntary community of cyber experts.
An example of benchmarks provided by the community:
- Windows Server 2016
- Windows 10
- Office 365
The benefits of hardening a component (or service) is that it reduces the attack service of that component.