Meet ComplAIIntelligence: Your AI-powered teammate for risk & complianceLearn more
All framework guides

Help Center · Framework guide

CIS Controls v8

CIS v8 · Security · Global · v8.0

Best PracticesImplementation Groups

Overview

CIS Controls v8 (CIS v8) — Prioritized set of safeguards to defend against common cyber attacks. ComplAI maps this framework’s controls so your team can track implementation, evidence, and audit readiness.

14 controls available in ComplAI for this framework.

Who it's for

  • Organizations that must demonstrate CIS v8 compliance
  • Security and compliance teams operating in Global
  • Customers and partners that require CIS v8 assurance

Why it matters

CIS v8 is a recognized security framework. Activating it in ComplAI lets you manage controls, evidence, and readiness in one place.

SecurityGlobalControl implementationAudit evidence

How ComplAI helps

  • Activate CIS v8 in the Framework Library to load its control catalog
  • Assign owners, track compliance status, and attach evidence per control
  • Use risk register and issues workflows when controls fail or deviate
  • Export readiness views for leadership and auditors

Sample controls

  • CIS 1

    Inventory of enterprise assets

    asset management
  • CIS 2

    Inventory of software assets

    asset management
  • CIS 3

    Data protection

    data protection
  • CIS 4

    Secure configuration

    change management
  • CIS 5

    Account management

    access control
  • CIS 6

    Access control management

    access control

Getting started

  1. Open Framework Library and activate CIS v8
  2. Review the control list and prioritize high-impact domains
  3. Attach policies, procedures, and technical evidence
  4. Mark controls audit-ready and monitor residual gaps