CIS

Tenable Network Security has been certified by the Center for Internet Security (CIS) to perform a wide variety of Unix, Windows and application audits based on best practice consensus benchmarks developed by CIS.

These best practice benchmarks contain recommended security settings designed to harden servers and applications from attack while still maintaining operational ease of use. The CIS consensus review process is comprised of volunteer and contract subject matter experts. Consensus participants provide perspective from a diverse set of backgrounds including consulting, software development, audit and compliance, security research, operations, government, and legal. The benchmarks are published in PDF format and available to the entire Internet community free of charge.

Tenable develops Nessus audit policies for specific CIS benchmarks and then submits our test criteria and audit results for analysis by CIS personnel for official certification.

Tenable has produced CIS policies for the following technologies:

• Applications
• Cisco Routers
• Desktop Operating Systems
• Server Operating Systems
• SQL Databases