Building a Threat Informed Security Program with CIS Controls

In this video, Kurt Dukes and Eric from Protech discuss the critical role of managed service providers (MSPs) in ensuring cybersecurity for small and medium enterprises. They delve into the importance of implementing CIS Critical Security Controls and share success stories and challenges faced by organizations in adopting these frameworks. Eric emphasizes the cultural and operational shifts within Protech as they embraced security best practices, highlighting the benefits of collaboration and community support in strengthening cybersecurity defenses.

• The Cyber Call episode emphasized the importance of implementing the CIS Critical Security Controls, especially Implementation Group 1, as a foundational cybersecurity measure.
• Managed Service Providers (MSPs) are seen as vital to providing IT and cybersecurity services to small and medium enterprises and local government entities, acting as the first and last line of defense.
• The Community Defense Model by CIS links threat intelligence and attack patterns to security controls, offering a data-backed approach to prioritizing cybersecurity measures.