/
What are the next steps in the process after receiving a 100% completion in CIS CSAT-Hosted?

What are the next steps in the process after receiving a 100% completion in CIS CSAT-Hosted?

Owned by Andrew Dannenberger, created
Last updated: Apr 27, 2022 by Amanda McGown
2 min read

Product Name

CIS CSAT-Hosted

Product Version

All versions

Date

Apr 27, 2022

Problem

After finishing the CIS CSAT-Hosted assessment, my organization has a 100% completion percentage. What are the next steps in the process?

Solution

There are several potential next steps:

  1. Close the existing assessment

The way to close an existing assessment in CIS CSAT-Hosted is to use the green “Assessment Menu” in the upper right corner, and then select one of the three options from the “End Current Assessment” sub-menu. This moves the current assessment to the “Assessment History”. You can still view a read-only version from the Assessment History menu on the left. The screenshot below shows where this is done:

If you are not planning on starting a new assessment right away, there is also no problem with leaving the current assessment open, rather than selecting “End Current Assessment”.

2. Analyze your results; identify areas for improvement, and develop a plan

Use the CSAT Assessment Dashboard to identify low scoring CIS Controls and low scoring CIS Safeguards within those CIS Controls. Please see the following link for more details on CIS Controls: CIS Controls Version 8.

Consider conducting a risk assessment using the CIS Risk Assessment Method (CIS RAM) to determine if your current CIS Controls implementation is acceptable or where it needs to be improved. Please see the following links to download CIS RAM content: CIS Controls CIS-RAM and CIS WorkBench / Home.

Also, consider developing a plan to improve low scoring CIS Safeguards and any areas of unacceptable risk. CIS offers many other resources that can help including CIS Controls companion and implementation guides, and other tools including the CIS Configuration Assessment Tool (CIS-CAT). Please see the following links for more information on CIS-CAT Pro tools: CIS-CAT Pro.

3. Conduct another assessment with CSAT

Your organization’s cybersecurity posture changes over time. It’s important to track those changes. You can either keep updating your existing assessment in CSAT, or you can close your current assessment and start a new one as described above. Either way, you want to maintain a current understanding of your organization’s cyber readiness and try to make continuous improvements. Organizations may want to continuously update their assessments or they may want to conduct full assessments on a periodic basis (every 6 months, every year, etc.).

Keywords; csat hosted 100 completion assessment

Content by Label

Copyright © 2022

Center for Internet Security®

 

Related content

How can I run a new assessment using CIS Controls v8 in CSAT Hosted?
How can I run a new assessment using CIS Controls v8 in CSAT Hosted?
SBP Customer Facing Knowledge Base
More like this
I'm a security Consultant using CIS-Hosted CSAT and I would like the ability to be an Admin for multiple Organizations with the ability to add existing users to our Organizations.
I'm a security Consultant using CIS-Hosted CSAT and I would like the ability to be an Admin for multiple Organizations with the ability to add existing users to our Organizations.
SBP Customer Facing Knowledge Base
Read with this
How to run a Historical Self Assessment with CSAT
How to run a Historical Self Assessment with CSAT
SBP Customer Facing Knowledge Base
More like this
Control Implementation Average Colors Explained
Control Implementation Average Colors Explained
SBP Customer Facing Knowledge Base
Read with this
How to complete the scoring process in CSAT Pro
How to complete the scoring process in CSAT Pro
SBP Customer Facing Knowledge Base
More like this
How are CIS CSAT scoring categories defined?
How are CIS CSAT scoring categories defined?
SBP Customer Facing Knowledge Base
Read with this