
A new draft publication has been made available by the Center for Strategic and International Studies (
CSIS), whose goal is:
“Establishing a prioritized baseline of information security measures and controls
that can be continuously monitored through automated mechanisms.”
Based on the inputs of the research including groups from public and private sectors, this vendor neutral document seems to high-light the real need for effective and auditable security controls, that aren't somehow linked the next best product offering.
Comments