Skip to main content
Security Performance Management
Continuous Monitoring
Vendor Risk Management
Trust Management Hub
Cyber Insurance
National Cybersecurity

Insights to Control Framework Mapping: User Management

Ingrid

Refer to the following User Management insights and assessments and how they're mapped to CIS v7 and CIS v8 controls for Control Insights:

Applications Using Cleartext Authentication

The presence of applications using cleartext authentication indicates ineffective controls of user accounts and credentials.

The ratio of events of type [Cleartext Credential Transmission] by type [Open Port] is above 2.0%

Assessment

insight-ineffective.png Negative

Observations

CIS v8 Controls CIS v7 Controls

Controls

6 Access Control Management

Safeguards

  • 4.6 Securely Manage Enterprise Assets and Software
  • 4.7 Manage Default Accounts on Enterprise Assets and Software

Controls

14 Controlled Access Based on the Need to Know

Safeguards

  • 14.4 Encrypt All Sensitive Information in Transit
  • 14.6 Protect Information Through Access Control Lists
  • 14.7 Enforce Access Control to Data Through Automated Tools
  • 14.8 Encrypt Sensitive Information at Rest
  • April 1, 2025: Published.

Related articles

Feedback

0 comments

Please sign in to leave a comment.