WHAT IF I DON'T USE CIS CONTROLS?
CIS RAM is based on "duty of care" risk analysis which applies to any security standard or regulation.
Regardless of your industry, CIS RAM guides users for compliance and balance with all regulatory requirements such as HIPAA Security Rule, PCI DSS, Massachusettes 201 CMR 17.00, SOX Audit Standard 5, and FISMA. CIS RAM conforms to ISO 27005 and NIST 800-30. Learn more about this risk assessment methodology with HALOCK and schedule a demonstration for your specific business needs.
Find out more about the DoCRA Standard, resources, CIS RAM, and how to implement at the CIS RAM FAQs.