RealCISO and AskBis: Cyber simplified with CIS

Do you run a small business and want to make sure your data is secure? Cybersecurity is essential for keeping your business safe from data breaches, phishing attacks, and other cyber threats. However, if you’re like most small business owners, understanding the best ways to protect your company can be overwhelming. Don’t worry – we got your back! In this blog post, we’ll revisit the key areas from the recent AskBis webinar where Co-Founder and CEO, Matt Farry, made a guest appearance calling in from who knows where in Dusty, their campervan. These include Cyber Insurance, Center for Internet Security (CIS) Top 18 Controls, and RealCISO and AskBis services should you need help on your journey. Let’s get started!

About Cyber Insurance: Cyber insurance will protect your business from the financial losses associated with data breaches, phishing attacks, and other cyber threats. Cyber insurance policies typically cover lost revenue due to downtime, costs associated with notifying customers, and legal fees. Cyber insurance is a great way to reduce your risk of significant financial losses due to cyber attacks. The problem? Cyber insurance is becoming increasingly difficult to acquire and very expensive if you’re lucky enough get an approved policy. The solution? Have a trusted partner and advisor like RealCISO or AskBis that can bring experience and advice to give you the best chance for a solid policy at a premium price.

Center for Internet Security (CIS): Center for Internet Security (CIS) is a framework that enables organizations to assess their current security posture against a set of general security controls and develop a plan to improve their overall security. This framework is used by organizations to ensure that their systems are secure and that they have the right processes in place to reduce the risk of cyber attacks. We covered the first 6 control areas that have over the years proven to increase security postures and reduce the likelihood of experiencing a security event.

The quick controls recap: Inventory where the things you care about protecting are (hardware, software, cloud services, etc.), conduct vulnerability management activities, limit access to sensitive or critical things, configure devices and service with input from security baselines, have solid audit log management. While this list here is really the TL;DR, the video goes into greater depth and you can always visit for a full list of controls or take a free assessment for your organization at

Conclusion: Cybersecurity is essential for keeping businesses safe from data breaches, phishing attacks, and other cyber threats. Fortunately, there are steps small business owners can take to reduce their risk by 85%. With the right tools and strategies in place, you can ensure that your organization is secure from cyber threats. Check out the video and follow us for future upcoming content!