Class: CisControl
The CIS Control (aka Critical Security Control) object describes a prioritized
set of actions to protect your organization and data from cyber-attack vectors.
The CIS
Controls are defined by the Center for Internet Security.
URI: ocsf:CisControl
classDiagram
class CisControl
click CisControl href "../CisControl/"
Object <|-- CisControl
click Object href "../Object/"
CisControl : desc
CisControl : name
CisControl : version
Inheritance
- OcsfObject
- Object
- CisControl
- Object
Slots
| Name | Cardinality and Range | Description | Inheritance |
|---|---|---|---|
| desc | 0..1 String |
The CIS Control description | direct |
| name | 1 String |
The CIS Control name | direct |
| version | 0..1 recommended String |
The CIS Control version | direct |
Usages
| used by | used in | type | used |
|---|---|---|---|
| Remediation | cis_controls | range | CisControl |
| CisBenchmark | cis_controls | range | CisControl |
In Subsets
Aliases
- CIS Control
Identifier and Mapping Information
Schema Source
- from schema: https://w3id.org/lmodel/ocsf
Mappings
| Mapping Type | Mapped Value |
|---|---|
| self | ocsf:CisControl |
| native | ocsf:CisControl |
| close | iso27001:SecurityControl |
LinkML Source
Direct
name: CisControl
description: 'The CIS Control (aka Critical Security Control) object describes a prioritized
set of actions to protect your organization and data from cyber-attack vectors.
The <a target=''_blank'' href=''https://www.cisecurity.org/controls''>CIS
Controls</a> are defined by the Center for Internet Security.'
in_subset:
- objects_subset
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- CIS Control
close_mappings:
- iso27001:SecurityControl
is_a: Object
slots:
- desc
- name
- version
slot_usage:
desc:
name: desc
description: 'The CIS Control description. For example: <i>Uninstall or disable
unnecessary
services on enterprise assets and software, such as an unused file sharing
service, web application module, or service function.</i>'
name:
name: name
description: 'The CIS Control name. For example: <i>4.8 Uninstall or Disable Unnecessary
Services on Enterprise Assets and Software.</i>'
required: true
version:
name: version
description: 'The CIS Control version. For example: <i>v8</i>.'
recommended: true
Induced
name: CisControl
description: 'The CIS Control (aka Critical Security Control) object describes a prioritized
set of actions to protect your organization and data from cyber-attack vectors.
The <a target=''_blank'' href=''https://www.cisecurity.org/controls''>CIS
Controls</a> are defined by the Center for Internet Security.'
in_subset:
- objects_subset
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- CIS Control
close_mappings:
- iso27001:SecurityControl
is_a: Object
slot_usage:
desc:
name: desc
description: 'The CIS Control description. For example: <i>Uninstall or disable
unnecessary
services on enterprise assets and software, such as an unused file sharing
service, web application module, or service function.</i>'
name:
name: name
description: 'The CIS Control name. For example: <i>4.8 Uninstall or Disable Unnecessary
Services on Enterprise Assets and Software.</i>'
required: true
version:
name: version
description: 'The CIS Control version. For example: <i>v8</i>.'
recommended: true
attributes:
desc:
name: desc
description: 'The CIS Control description. For example: <i>Uninstall or disable
unnecessary
services on enterprise assets and software, such as an unused file sharing
service, web application module, or service function.</i>'
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- Description
rank: 1000
alias: desc
owner: CisControl
domain_of:
- Osint
- RelatedEvent
- Remediation
- Vulnerability
- Advisory
- Analytic
- ApplicationObject
- Assessment
- Check
- CisBenchmark
- CisBenchmarkResult
- CisControl
- Compliance
- Cve
- Database
- Databucket
- Enrichment
- File
- FindingObject
- FindingInfo
- Graph
- Group
- Job
- Location
- Node
- Policy
- Rule
- Table
- WebResource
- Device
- IncidentFinding
range: string
name:
name: name
description: 'The CIS Control name. For example: <i>4.8 Uninstall or Disable Unnecessary
Services on Enterprise Assets and Software.</i>'
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- Name
rank: 1000
alias: name
owner: CisControl
domain_of:
- AnalysisTarget
- Observable
- Os
- Osint
- Package
- Parameter
- PrivilegeInfo
- San
- Scim
- Script
- ServicePrivilegeAnalysis
- SoftwareComponent
- Sso
- StartupItem
- ThreatActor
- Token
- Entity
- Resource
- Account
- Agent
- AiModel
- Aircraft
- Analytic
- ApplicationObject
- Assessment
- AutonomousSystem
- Campaign
- Check
- CisBenchmark
- CisBenchmarkResult
- CisControl
- ClassifierDetails
- Container
- D3fTactic
- D3fTechnique
- Database
- Databucket
- DomainContact
- Edge
- Endpoint
- Enrichment
- EnvironmentVariable
- Evidences
- Extension
- Feature
- File
- Graph
- Group
- HttpCookie
- HttpHeader
- Idp
- Image
- Job
- Kernel
- KeyValueObject
- LoadBalancer
- Logger
- Malware
- ManagedEntity
- MessageContext
- Metric
- Mitigation
- NetworkInterface
- Node
- Organization
- PeripheralDevice
- Policy
- ProcessEntity
- Product
- QueryInfo
- Reporter
- ResourceDetails
- Rule
- Scan
- Service
- SubTechnique
- Table
- Tactic
- Technique
- Trait
- TransformationInfo
- UnmannedAerialSystem
- User
- WebResource
- Device
- FtpActivity
- RegValue
- WinResource
- WinService
- PrefetchQuery
range: string
required: true
version:
name: version
description: 'The CIS Control version. For example: <i>v8</i>.'
from_schema: https://w3id.org/lmodel/ocsf
aliases:
- Version
rank: 1000
alias: version
owner: CisControl
domain_of:
- Os
- Package
- RpcInterface
- Sbom
- Scim
- SoftwareComponent
- Tls
- Agent
- AiModel
- Analytic
- Api
- ApplicationObject
- Attack
- Certificate
- Check
- CisControl
- CisCsc
- Cvss
- D3fend
- Databucket
- Epss
- Extension
- Feature
- File
- HttpRequest
- Logger
- ManagedEntity
- Metadata
- Policy
- Product
- ResourceDetails
- Rule
- Service
- NtpActivity
range: string
recommended: true