CIS Benchmark

compliance

Consensus-based security configuration guidelines developed by the Center for Internet Security.

What is CIS Benchmark?

CIS Benchmarks are prescriptive best practices for securing IT systems, developed through a consensus process involving security experts worldwide. The Microsoft 365 Foundations Benchmark provides specific configuration recommendations for Azure AD, Exchange Online, SharePoint, Teams, and other M365 services. Benchmarks are organized into levels: Level 1 for broader applicability and Level 2 for security-sensitive environments.

In Microsoft 365

The CIS Microsoft 365 Foundations Benchmark covers identity and authentication (MFA, CA policies), data protection, and service-specific security settings. TrueConfig controls map directly to CIS benchmark recommendations, making compliance reporting straightforward.

Examples

  • 1CIS 1.1.1 - Ensure multifactor authentication is enabled
  • 2CIS 1.1.8 - Block legacy authentication
  • 3CIS 1.3.3 - Ensure PIM is used for privileged roles

Related TrueConfig Controls

These controls help implement and verify cis benchmark in your Microsoft 365 environment.

ID-01User MFA RegistrationID-02Block Legacy AuthenticationPA-01Limit Global Administrators to 2-4PA-04Require PIM for All Privileged RolesCA-01Require MFA via Conditional Access Policy

Frequently Asked Questions

What is CIS Benchmark?
Consensus-based security configuration guidelines developed by the Center for Internet Security.
How does CIS Benchmark work in Microsoft 365?
The CIS Microsoft 365 Foundations Benchmark covers identity and authentication (MFA, CA policies), data protection, and service-specific security settings. TrueConfig controls map directly to CIS benchmark recommendations, making compliance reporting straightforward.
What are examples of CIS Benchmark?
Examples of CIS Benchmark include: CIS 1.1.1 - Ensure multifactor authentication is enabled, CIS 1.1.8 - Block legacy authentication, CIS 1.3.3 - Ensure PIM is used for privileged roles.
Which TrueConfig controls relate to CIS Benchmark?
TrueConfig controls related to CIS Benchmark include: ID-01, ID-02, PA-01, PA-04, CA-01. These controls help implement and verify cis benchmark in your environment.
← Back to GlossaryBrowse Controls →