New guidelines: Top 20 Cybersecurity controls are based on the philosophy that defense should be informed by what offense is seeing. The list of 20 controls was found to be essentially identical across government, the defense industrial base, financial institutions and retailers. The CAG initiative is part of a larger effort housed at the Center for Strategic and International Studies in Washington, D.C. The list includes best practices in automating the controls and tests that can determine whether each control is effectively implemented. A pilot implementation will be conducted in several federal agencies during 2009 to test the CAG’s value and cost.”]
Source: https://www.devicesecurity.io/new-guidelines-top-20-cybersecurity-controls-a-1228