Often referred as “SANS Twenty Critical Security Controls for Effective Cyber Defense“, is a collection of controls which are believed to have the greatest impact in improving risk posture against real-world threats.
There is no shortcut or “miracle medicin” when it comes to information security. However, it is good to know this material as supporting information, and it is worth to browse through the material.
- Main page
- Controls document
- Vendor Solutions for the controls
- Survey 2013, Moving From Awareness to Action
- The table below shows table 1 from the survey. It lists both the control and the level of adoption