CIS Critical Security Control 18: Penetration Testing

Welcome to our course series on CIS Top 18 Critical Security Controls v8. In this course covering control 18: Penetration Testing, you'll learn how to train teams to establish the importance of a penetration testing program. Plus, gain insights on the recommended frequency, types, and scope of penetration testing.

Time

35 minutes

Difficulty

Intermediate

NEED TO TRAIN YOUR TEAM? LEARN MORE

Join over 3 million cybersecurity professionals advancing their career

Required fields are marked with an *

View all SSO options

Already have an account? Sign In »

Course Content

Module 1: Course Overview and Introduction to the Critical CIS Controls

About This Course

FREE

Course Overview and Instructor Introduction

FREE

What is the Center for Internet Security?

FREE

What are Controls, Functions, and Safeguards?

FREE

Overview of the Critical CIS Controls

FREE

Module 2: Penetration Testing

2.1Why Is This Control Critical?

2.2Establish and Maintain a Penetration Testing Program

2.3Perform Periodic External Penetration Tests

Module 3: CIS 18 Course Review and What's Next

3.1What's Next?

3.2Course Review

Course Description

These security controls can be combined with frameworks, like NIST SP 800-37 (The NIST Risk Management Framework-RMF) to provide organizations with defense-in-depth best practices.

This course may help prepare students for industry certifications around the CIS Security Controls.The course will cover an overview of each control, map the controls to the NIST Cybersecurity Framework, and students will gain hands-on practice through labs in this course.

Prerequisites

This course is designed for IT security professionals who want to expand their knowledge and skills in the area of development and implementation of security controls. Prerequisites include an existing knowledge of networking and knowledge of their organization’s security requirements.