+ Reply to Thread
Results 1 to 2 of 2
  1. Member
    Join Date
    Nov 2012
    Location
    Alabama
    Posts
    52

    Certifications
    A+, Security +, C|EH, and CCNA R&S
    #1

    Default Implementing CIS Benchmarks

    Has anyone had any experience in the initial implementation of CIS Benchmarks? What was your justification? How did you recommend it to management?
    Reply With Quote Quote  

  2. Senior Member yoba222's Avatar
    Join Date
    Jun 2013
    Posts
    433

    Certifications
    LFCS, GCIH, eJPT, CCNA, CAPM, Sec+, Net+, A+
    #2
    In my experience sometimes it breaks stuff. The control items that break stuff are argued about and usually exempted.

    This the backwards way of doing things. The OS should have had the benchmark applied to a golden baseline image to begin with, before readying the OS for a production environment.

    Justification? Equifax, Target, Sony, ...
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks