{"id":78260,"date":"2023-03-27T11:30:00","date_gmt":"2023-03-27T15:30:00","guid":{"rendered":"https:\/\/jumpcloud.com\/?p=78260"},"modified":"2023-08-30T09:33:45","modified_gmt":"2023-08-30T13:33:45","slug":"cis-compliance","status":"publish","type":"post","link":"https:\/\/jumpcloud.com\/blog\/cis-compliance","title":{"rendered":"CIS Benchmarks for Compliance"},"content":{"rendered":"\n<p>IT admins have some of the toughest, most thankless jobs.<\/p>\n\n\n\n<p>While their day-to-day tasks may not be glamorous and flashy, the impact of their role can\u2019t be understated \u2014 especially when it comes to security and compliance.<\/p>\n\n\n\n<p>Modern organizations have a legal obligation to keep their employee and customer data safe. And the <a href=\"https:\/\/www.cisecurity.org\/\" target=\"_blank\" rel=\"noreferrer noopener\">Center for Internet Security (CIS)<\/a> helps companies minimize their risk and maximize their protection, sharing the most up-to-date guidelines for cybersecurity.<\/p>\n\n\n\n<p>But the over 100 CIS Benchmarks tend to overwhelm IT leaders struggling with reduced budgets and resources. What they may not know is that implementing CIS Benchmarks <a href=\"https:\/\/jumpcloud.com\/blog\/painless-it-compliance\">doesn\u2019t have to be painful<\/a>.<\/p>\n\n\n\n<p>Below, we\u2019ll cover what CIS compliance is, why it\u2019s important (even if you don\u2019t work with the government), and how to use CIS Benchmarks to achieve it.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">What Is CIS Compliance?<\/h2>\n\n\n\n<p>A company achieves CIS compliance when they\u2019ve followed CIS security guidelines. To be CIS-compliant, organizations must implement a wide variety of recommendations outlined in the form of CIS Benchmarks. CIS compliance implies that organizations have taken the necessary steps to safeguard their data and systems from unauthorized access \u2014 from internal and external actors.<\/p>\n\n\n\n<p>Most governments require proof of CIS compliance for their vendors. And some require other forms of compliance as well, such as <a href=\"https:\/\/jumpcloud.com\/blog\/nist-compliance-standards\">NIST<\/a>, <a href=\"https:\/\/jumpcloud.com\/blog\/preparing-for-your-pci-dss-audit-with-jumpcloud\">PCI DSS<\/a>, and <a href=\"https:\/\/jumpcloud.com\/blog\/hipaa-compliance-jumpcloud\">HIPAA<\/a>. Implementing CIS Benchmarks leaves companies with a strong, broad risk management strategy that helps companies adopt other security frameworks, too.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">What Are CIS Benchmarks?<\/h2>\n\n\n\n<p>CIS Benchmarks are a set of best practices published by the Center for Internet Security, curated by cybersecurity experts from around the world. These Benchmarks are designed specifically to mitigate known and emerging security risks within organizations\u2019 digital systems, applications, and networks and serve as an international standard for companies that collect, store, and analyze sensitive data.<\/p>\n\n\n\n<p>CIS Benchmarks apply to over 25 of the most commonly used vendor products, defining optimal settings and access management policies to combat malware, phishing, and ransomware attacks. CIS Benchmark recommendations and audit checklists are free and available for anyone to download online.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Benchmark Structure<\/h3>\n\n\n\n<p>To make CIS Benchmarks easier to follow, they all have an analogous structure. First comes a high-level description of the Benchmark, any definitions IT and security teams need to know, and an explanation of the Benchmark&#8217;s impact on cybersecurity. Then comes a prioritized checklist of recommended policies and configurations for organizations to implement and audit.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Scored and Unscored Recommendations<\/h3>\n\n\n\n<p>Each recommendation in a CIS Benchmark is considered \u201cscored\u201d or \u201cunscored.\u201d Scored recommendations are mandatory to attain CIS compliance. If scored recommendations aren\u2019t put into practice, they decrease the company\u2019s overall Benchmark score. However, unlike scored recommendations, unscored recommendations do not affect an organization\u2019s total Benchmark score. A list of scored and unscored recommendations is available in the appendix of each CIS Benchmark.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">CIS Hardened Images<\/h3>\n\n\n\n<p>Beyond written recommendations, the CIS offers Hardened Images or virtual machines preconfigured with operating system configurations. Hardened Images serve as a template, meaning they can be copied and then adjusted to achieve varying levels of compliance. Companies take advantage of CIS Hardened Images because they are continuously updated by CIS, quick to deploy, and easy to manage.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">CIS Benchmark Profiles<\/h2>\n\n\n\n<p>CIS uses several levels to distinguish between the resources and recommendations for each benchmark. Companies are encouraged to aim for the profile that best suits their compliance and security requirements.<\/p>\n\n\n\n<ul>\n<li><strong>Level 1 profile: <\/strong>Level 1 consists of relatively basic security recommendations that organizations can put into place quickly without significant disruption to internal or external stakeholders. The main goal of Level 1 is to decrease cybersecurity risk by minimizing entry points to IT systems.<\/li>\n\n\n\n<li><strong>Level 2 profile:<\/strong> Level 2 is meant to protect organizations that collect and store highly sensitive data. The policy and system considerations CIS outlines for this profile are more complex and tougher to implement than those in Level 1 and typically require extensive planning, change management, and subject matter expertise. Because of this rigor, implementing these recommendations sets organizations up for most regulatory requirements.<\/li>\n\n\n\n<li><strong>STIG profile:<\/strong> STIG, short for Security Technical Implementation Guide, is a set of configuration standards for organizations vying for U.S. government contracts. Although STIG is often referred to as Level 3 in CIS Benchmarks, the profile is somewhat separate from CIS in that it\u2019s technically published and maintained by the Defense Information Systems Agency (DISA). Companies that do business with the government <em>and <\/em>the public sector might choose to achieve CIS and STIG compliance.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Benefits of Using CIS Benchmarks<\/h2>\n\n\n\n<p>CIS Benchmarks ensure that companies are preserving their product, employee, and customer data and minimizing the chances of a detrimental cyberattack by:<\/p>\n\n\n\n<ul>\n<li>Implementing the most up-to-date industry standards for threat prevention<\/li>\n\n\n\n<li>Having a documented process for uncovering and addressing harmful vulnerabilities&nbsp;<\/li>\n\n\n\n<li>Having a solid data governance process recognized by academics, research institutions, governments, and enterprise companies<\/li>\n\n\n\n<li>Laying a foundation for compliance with other regulations such as NIST, PCI DSS, and HIPAA&nbsp;<\/li>\n<\/ul>\n\n\n\n<p>Hitting particular benchmarks gives vendors, clients, investors, and the general public confidence that the IT infrastructure powering modern organizations is safe and secure \u2014 today and in the future.<\/p>\n\n\n\n\n<div class=\"promotion-banner-small is-flex-direction-column has-items-aligned-flex-start has-items-aligned-center-tablet\">\n    <div class=\"promo-small-image is-hidden-mobile\">\n        <img decoding=\"async\" src=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/02\/image-1-1-aspect-ratio-160-110-1.png\" alt=\"JumpCloud\">\n    <\/div>\n    <div class=\"promo-small-content\">\n        <p class=\"is-type-body-tiny is-type-weight-bold is-important promo-small-title\">\n            The IT Manager\u2019s Guide to Data Compliance Hygiene        <\/p>\n        <p class=\"is-type-body-default is-important\">\n            How to ace your audit        <\/p>\n    <\/div>\n    <div class=\"promo-small-cta\">\n        <a href=\"https:\/\/jumpcloud.com\/resources\/data-compliance-guide\" data-promo=\"Data Compliance Hygiene\" class=\"button is-primary-green promo-small-banner-link\">Get the Guide <\/a>\n    <\/div>\n<\/div>\n\n\n\n\n<h2 class=\"wp-block-heading\">How to Use Benchmarks for CIS Compliance<\/h2>\n\n\n\n<p>The 100+ CIS Benchmarks help organizations achieve CIS compliance and limit an organization\u2019s exposure to cyber threats across their tech stack.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Server Software<\/h3>\n\n\n\n<p>Servers can have multiple points of failure \u2014 storage settings, admin controls, permissions, and authentication. CIS Benchmarks specify configurations for the major server providers on the market, like VMware and Microsoft Windows Server, making it easy for IT and security teams to execute and enforce.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Multi-Function Print Devices<\/h3>\n\n\n\n<p>Although they may not immediately come to mind as potential weak points in your IT environment, printers, scanners, and copiers can and have been hacked before. CIS Benchmarks outline proper firmware, wireless access, and file-sharing settings to prevent unwanted cyber threats in peripheral devices.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Cloud Providers<\/h3>\n\n\n\n<p>These days, virtually every company employs some form of cloud services. CIS Benchmarks describe optimal settings for popular infrastructure solutions such as Oracle Cloud, Google Cloud, Microsoft Azure, and Amazon Web Services. Safeguards include compliance controls, identity and access management, and network configurations.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Mobile Devices<\/h3>\n\n\n\n<p>In remote and hybrid workplaces, it\u2019s not uncommon for employees to use mobile phones, tablets, or other connected devices in their daily work. CIS Benchmarks delineate the appropriate privacy settings, application permissions, browser settings, and developer settings for Android, iPadOS, and Apple iOS operating systems.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Desktop Software<\/h3>\n\n\n\n<p>Most employees spend most of their time working on a computer. CIS benchmarks provide settings, access management, and device management recommendations for browsers like Mozilla Firefox and Google Chrome, widely used desktop applications like Microsoft Office suite, and other third-party software.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Network Devices<\/h3>\n\n\n\n<p>Networks are another major point of entry for cyberattacks, so CIS Benchmarks provide configurations for virtual private networks (VPNs), firewalls, routers, and switches. Some benchmarks are specific to network vendors like Palo Alto Networks, Cisco, and Juniper but can also be applied to other providers to bolster an organization\u2019s governance policy.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Operating Systems<\/h3>\n\n\n\n<p>Operating systems are a core component of an organization\u2019s IT framework but can be particularly vulnerable to attack. There are CIS Benchmarks for personal and enterprise Linux, macOS, and Windows operating systems that dictate web browser settings, policies, user profile management, remote access, patch management, and driver installation.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">JumpCloud\u2019s Solutions for CIS Compliance and Meeting CIS Benchmarks<\/h2>\n\n\n\n<p>Adhering to CIS Benchmarks isn\u2019t a simple process. But for companies dealing with sensitive data, CIS compliance will never be a nice-to-have \u2014 it\u2019s a must-have. And it\u2019s also not a one-and-done activity. Regulations and best practices are always changing as the world becomes more complex and cyberattackers evolve their strategies.<\/p>\n\n\n\n<p>So how can IT and security teams get and stay on track?<\/p>\n\n\n\n<p>JumpCloud helps you integrate CIS Benchmarks into your day-to-day operations, helping you manage data and security across your identity, access, and device management infrastructure. As an intuitive open directory platform, with built-in server authentication, cross-OS mobile device management (MDM), RADIUS, and more, JumpCloud has everything you need to keep up with modern IT hygiene and overcome the challenges that come with traditional system administration. JumpCloud gives you the automation, depth, and peace of mind you need to keep your company safe.<\/p>\n\n\n\n<p>Ready for the best audit results you\u2019ve ever had? <a href=\"https:\/\/jumpcloud.com\/resources\/data-compliance-guide\" target=\"_blank\" rel=\"noreferrer noopener\">Download our Guide to Data Compliance Hygiene<\/a> today.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Learn more about CIS compliance, benchmarks to strive for, and how JumpCloud can help with your journey to compliance.<\/p>\n","protected":false},"author":131,"featured_media":78307,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"categories":[1],"tags":[],"collection":[2775],"platform":[],"funnel_stage":[3016],"coauthors":[2568],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.9 (Yoast SEO v22.9) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>CIS Benchmarks for Compliance - JumpCloud<\/title>\n<meta name=\"description\" content=\"Learn more about CIS compliance, benchmarks to strive for, and how JumpCloud can help with your journey to compliance.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/blog\/cis-compliance\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"CIS Benchmarks for Compliance\" \/>\n<meta property=\"og:description\" content=\"Learn more about CIS compliance, benchmarks to strive for, and how JumpCloud can help with your journey to compliance.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/blog\/cis-compliance\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:published_time\" content=\"2023-03-27T15:30:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-08-30T13:33:45+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/03\/Server.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"640\" \/>\n\t<meta property=\"og:image:height\" content=\"427\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Kelsey Kinzer\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Kelsey Kinzer\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/cis-compliance#article\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/cis-compliance\"},\"author\":{\"name\":\"Kelsey Kinzer\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/c4e9aeadd98cafbd216d3134ad10ab13\"},\"headline\":\"CIS Benchmarks for Compliance\",\"datePublished\":\"2023-03-27T15:30:00+00:00\",\"dateModified\":\"2023-08-30T13:33:45+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/cis-compliance\"},\"wordCount\":1393,\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/cis-compliance#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/03\/Server.jpg\",\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/cis-compliance\",\"url\":\"https:\/\/jumpcloud.com\/blog\/cis-compliance\",\"name\":\"CIS Benchmarks for Compliance - JumpCloud\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/cis-compliance#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/cis-compliance#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/03\/Server.jpg\",\"datePublished\":\"2023-03-27T15:30:00+00:00\",\"dateModified\":\"2023-08-30T13:33:45+00:00\",\"description\":\"Learn more about CIS compliance, benchmarks to strive for, and how JumpCloud can help with your journey to compliance.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/cis-compliance#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/blog\/cis-compliance\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/cis-compliance#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/03\/Server.jpg\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/03\/Server.jpg\",\"width\":640,\"height\":427,\"caption\":\"server room\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/cis-compliance#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"CIS Benchmarks for Compliance\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/c4e9aeadd98cafbd216d3134ad10ab13\",\"name\":\"Kelsey Kinzer\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/08f33caaabd3e83507748fcc2d575a67\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/9a16ebe214c820d6c288597039b7e89f?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/9a16ebe214c820d6c288597039b7e89f?s=96&d=mm&r=g\",\"caption\":\"Kelsey Kinzer\"},\"description\":\"Kelsey is a passionate storyteller and Content Writer at JumpCloud. She is particularly inspired by the people who drive innovation in B2B tech. When away from her screen, you can find her climbing mountains and (unsuccessfully) trying to quit cold brew coffee.\",\"sameAs\":[\"https:\/\/jumpcloud.com\/blog\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"CIS Benchmarks for Compliance - JumpCloud","description":"Learn more about CIS compliance, benchmarks to strive for, and how JumpCloud can help with your journey to compliance.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/blog\/cis-compliance","og_locale":"en_US","og_type":"article","og_title":"CIS Benchmarks for Compliance","og_description":"Learn more about CIS compliance, benchmarks to strive for, and how JumpCloud can help with your journey to compliance.","og_url":"https:\/\/jumpcloud.com\/blog\/cis-compliance","og_site_name":"JumpCloud","article_published_time":"2023-03-27T15:30:00+00:00","article_modified_time":"2023-08-30T13:33:45+00:00","og_image":[{"width":640,"height":427,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/03\/Server.jpg","type":"image\/jpeg"}],"author":"Kelsey Kinzer","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Kelsey Kinzer","Est. reading time":"7 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/jumpcloud.com\/blog\/cis-compliance#article","isPartOf":{"@id":"https:\/\/jumpcloud.com\/blog\/cis-compliance"},"author":{"name":"Kelsey Kinzer","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/c4e9aeadd98cafbd216d3134ad10ab13"},"headline":"CIS Benchmarks for Compliance","datePublished":"2023-03-27T15:30:00+00:00","dateModified":"2023-08-30T13:33:45+00:00","mainEntityOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/cis-compliance"},"wordCount":1393,"publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/cis-compliance#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/03\/Server.jpg","inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/blog\/cis-compliance","url":"https:\/\/jumpcloud.com\/blog\/cis-compliance","name":"CIS Benchmarks for Compliance - JumpCloud","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/cis-compliance#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/cis-compliance#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/03\/Server.jpg","datePublished":"2023-03-27T15:30:00+00:00","dateModified":"2023-08-30T13:33:45+00:00","description":"Learn more about CIS compliance, benchmarks to strive for, and how JumpCloud can help with your journey to compliance.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/blog\/cis-compliance#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/blog\/cis-compliance"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/blog\/cis-compliance#primaryimage","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/03\/Server.jpg","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2023\/03\/Server.jpg","width":640,"height":427,"caption":"server room"},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/blog\/cis-compliance#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"CIS Benchmarks for Compliance"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/c4e9aeadd98cafbd216d3134ad10ab13","name":"Kelsey Kinzer","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/08f33caaabd3e83507748fcc2d575a67","url":"https:\/\/secure.gravatar.com\/avatar\/9a16ebe214c820d6c288597039b7e89f?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/9a16ebe214c820d6c288597039b7e89f?s=96&d=mm&r=g","caption":"Kelsey Kinzer"},"description":"Kelsey is a passionate storyteller and Content Writer at JumpCloud. She is particularly inspired by the people who drive innovation in B2B tech. When away from her screen, you can find her climbing mountains and (unsuccessfully) trying to quit cold brew coffee.","sameAs":["https:\/\/jumpcloud.com\/blog"]}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/78260"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/131"}],"replies":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/comments?post=78260"}],"version-history":[{"count":3,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/78260\/revisions"}],"predecessor-version":[{"id":96746,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/78260\/revisions\/96746"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media\/78307"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=78260"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/categories?post=78260"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/tags?post=78260"},{"taxonomy":"collection","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/collection?post=78260"},{"taxonomy":"platform","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/platform?post=78260"},{"taxonomy":"funnel_stage","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/funnel_stage?post=78260"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=78260"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}