Bsides Delhi 2017 - CIS Critical Security Controls - Vikas Singh Yadav

Slides: https://goo.gl/SMQjiq Information Security is critical to ensuring protection of critical information and information systems. Most organisations implement Information Security in an ad hoc manner with few security controls sprinkled throughout the organisation after threats emerge and attacks happen. CIS Critical Controls are a set of 20 security controls which is based on “Offense informs Defense” concept. In this talk I will describe how we implemented CIS critical controls in our organisation to improve Information Security. The major achievement was to use low cost and open source tools to execute the project in limited time and budget.