CIS 3.0.0 L1
      Back to home
      1. Help Center
      2. CIS 3.0.0 L1

      Additional settings that were added to CIS 3.0 and if any require customer input

      Overview

      This knowledge base article describes the additional settings that were added to CIS Windows 11 Benchmark 3.0.0.

      CIS Windows 11 Benchmark 3.0.0 has introduced new settings and recommendations aimed at further enhancing the security posture of Windows 11 systems.

      Here is a list of additional settings that were introduced in CIS Windows 11 Benchmark 3.0.0:

      1. Enhanced User Account Controls: New recommendations may include strengthening user account controls, such as enforcing multi-factor authentication for privileged accounts, limiting administrative privileges, and implementing stricter password policies.

      2. Advanced Firewall Configurations: Updated firewall configurations might be recommended to better protect the system from network-based attacks. This could involve defining more granular rules for inbound and outbound traffic, blocking certain protocols or ports, and enabling logging for better visibility.

      3. Application Whitelisting: Introduction of recommendations related to application whitelisting to mitigate the risk of unauthorized software execution. This might involve defining approved application lists and restricting the execution of unapproved applications.

      4. Endpoint Detection and Response (EDR): Recommendations regarding the implementation and configuration of endpoint detection and response solutions to improve threat detection and incident response capabilities.

      5. Secure Boot and Device Encryption: Strengthening recommendations around secure boot configurations and full disk encryption to protect against unauthorized access and data breaches.

      6. Security Patch Management: Updated guidance on patch management processes, including recommendations for timely installation of security patches, vulnerability scanning, and risk assessment.

      7. Cloud Integration Security: Recommendations for securely integrating Windows 11 systems with cloud services, including configuring secure authentication methods, encrypting data in transit and at rest, and implementing access controls.

      8. Secure Remote Access: Enhanced recommendations for securing remote access to Windows 11 systems, such as implementing VPNs, remote desktop gateways, or other secure remote access solutions.

      In regard to customer input, while many of these settings can be implemented based on standard best practices, Devicie will work with your IT team as required to input specific customization based on the organization's unique requirements, infrastructure, and risk tolerance. A list of examples:

      • User Access Controls: Organizations may need to define specific roles and permissions tailored to their organizational structure and business processes.

      • Firewall Configurations: Customization of firewall rules may be necessary to accommodate the organization's network architecture and application requirements.

      • Application Whitelisting: Organizations may need to create and maintain application whitelists based on their approved software inventory and business needs.

      • Security Patch Management: Organizations may need to establish processes for testing and deploying patches in their specific IT environment, considering factors such as application compatibility and criticality of systems