Skip to main content
Implement the prior version of the CIS Critical Security Controls.
The CIS Critical Security Controls version 8.0 is a prioritized set of safeguards developed by the Center for Internet Security to mitigate the most prevalent cyber attacks. Version 8.0 consolidated the controls into 18 control areas organized by Implementation Groups.
If you are starting fresh, CIS v8.1 is the latest minor revision. Use v8.0 if your existing program or contracts reference it specifically.

Who needs CIS Controls v8.0?

All organizations

CIS Controls are sector-agnostic and scale via Implementation Groups.

Maturing security teams

Teams seeking a prioritized, actionable roadmap for defense.

Key components

18 controls

Consolidated control areas covering the most impactful safeguards.

Implementation Group 1

Essential cyber hygiene for small organizations.

Implementation Group 2

For organizations managing more complex IT environments.

Implementation Group 3

For mature organizations facing sophisticated threats.

How DSALTA helps with CIS Controls v8.0

1

Activate CIS v8.0

Select CIS v8.0 and your Implementation Group. DSALTA maps the safeguards to controls.
2

Review safeguards

Review the control areas and safeguards for your IG and assign owners.
3

Collect evidence automatically

Connect integrations to verify technical safeguards.
4

Approve policies

Review and approve security policies mapped to the controls.
5

Track coverage

Monitor your safeguard coverage across all 18 controls.

Frequently asked questions

v8.1 is the latest minor update with refinements and updated mappings. Choose v8.0 only if specifically required.
IGs let organizations adopt safeguards proportionate to their size, resources, and risk — from basic hygiene (IG1) to advanced (IG3).