You are here: Home

Citizens Business Government Cyber Laws

Tell Us What You Think

Cyber Safety for College Students

I Want to Report...

Cyber Security Orgs.

Northeast Ohio
Northeast Ohio Cyber Security
National Cyber Security

Cyber Security News

The SANS Institute

Center for Internet Security – CIS Controls Version 7

From the Desk of Office of Security & Research, Cuyahoga County IT

Many security professionals are familiar with the formerly Critical Security Controls, however, within the past few years the Controls have transferred back the Center for Internet Security (CIS). The CIS Controls was a joint public-private consortium to share attack information to provide the same type of control-prioritization knowledge for civilian government agencies and critical infrastructure back in 2009. Recently the CIS has just released an updated version, Version 7. Here are some of the highlights and how this controls are being organized so they can be understood across the board, not to just security professionals. Security is a shared Responsibility! (

  • CIS Controls History:  
  • The Controls update was guided by 7 key Principals: 
    • Address current attacks, emerging technology, and changing mission/business requirements for IT 
    • Bring more focus to key topics like authentication, encryptions, and application whitelisting 
    • Better align with other frameworks 
    • Improve the consistency and simplify the wording of each sub-control – one “ask” per sub-control 
    • Set the foundation for a rapidly growing “ecosystem” of related products and services from both CIS and the marketplace 
    • Make some structural changes in layout and format 
    • Reflect the feedback of a world-side community of volunteers, adopters, and supporters 
  • The Controls have been organized into 3 distinct categories: 
    • Basic (CIS Controls 1-6) 
    • Foundational (CIS Controls 7-16)
    • Organizational (CIS Controls 17-20)
list of CIS controls

Reference Addition materials directly from the Center for Internet Security:

Cuyahoga County Security Department Featured in the Wall Street Journal

"For Jeremy Mio, security and research manager for Cuyahoga County, Ohio, the main focus is on protecting the county’s computer networks, which means not only watching what the approximately 8,000 to 10,000 employees are doing but making sure members of the public that access the system are not trying to perpetrate any mischief."

Click here to read the article.

2015 Survey Honors Most Innovative, Pioneering Digital Counties

Cuyahoga County won 10th place in the 500,000 or more population category commemorating multiple IT efforts such as county wide consolidation, cyber Security, regional collaboration, and more. Click here for the press release.

Cuyahoga County, OH honored as best in the nation for Cyber Security!