Versions Compared

Old Version 5

changes.mady.by.user Chris Boldiston

Saved on

compared with

New Version Current

changes.mady.by.user Andrew Dannenberger

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Product Name

CIS CSAT Pro - SecureSuite CIS Controls Self Assessment Tool

Product Version

Date

Problem

Info

I’m having trouble understanding the steps to take to complete the scoring process

Solution

After creating an assessment, your assessment Dashboard page should look similar to the picture below.

Note

Please note that the 19 18 CIS Safeguards are in red because they have not been completed and validated.

Complete the steps below for each Safeguard:

  1. Click on the Control in red. We will start with CIS CO1, which is Control 1.

  2. That will send you to the “CIS Control 1: Inventory and Control of Enterprise Assets”, as seen below:

3. At this point, please reference the Scoring section of the CSAT Pro User Guide. 1.1 Establish and Maintain Detailed Enterprise Asset Inventory is the first Safeguard for Control 1. Each CIS Safeguard can be assigned a whole number score of 1 through 5. Reference ranges are provided with each option; for instance, if an organization has a Safeguard implemented on 50% of their systems, they could select a score of 3 which has a reference range of "41 -- 60%". So, if we select 3 for Safeguard 1.1, then it would look like this:

Note

Please note that if you want to exclude a Safeguard, then you toggle Applicable to off as seen in the screenshot below:

  1. Now that Safeguard 1.1 has a score, select Complete:

  1. Once you select Complete, the Validate and Send Back options appear. The Send Back option allows an admin to enter a comment in a pop-up windows window and after clicking it Send Back in that windowswindow, it will revert to being uncompleted. If the Safeguard is indeed Complete, then the next step is to validate.

  1. After selecting Validate the Revert Validation option appears. Select Revert Validation if you want to revert or reset the Safeguard back to its original state.

7. Once you complete validation for Safeguard 1.1, you can see the scoring for the Control goes from 0% completed and validated to 20%. That is because there are five Safeguards and we’ve only completed and validated one of the five, so 20% of them.

Info

If you do not want to Validate the safeguard yet, then there is a separate list for Safeguards that have NOT been validated. The Pending for Validation Tasks List section in the User Guide explains this in detail.

  1. To complete the assessment, complete steps 1-7 for the rest of the Controls and Safeguards.

Info

If you are unsure or want to check if a sub-control safeguard was missed, you can navigate to the Assessment Summary page to verify, as shown in the screenshot below.

Keywords; CSAT Pro scoring assessment safeguard validate complete

Content by Label

Filter by label (Content by label)
showLabelsfalse
showSpacefalse
cqllabel = "sbp_fer"

Copyright © 2020

Center for Internet Security®

Privacy Policy

Page Properties
hiddentrue

Action

Name(s)

Date

Linked ticket

Created by

Reviewed by

Approved by

Remove by