I’ve been looking into… er alright, let’s be honest, nerding out, to CIS’s top 20 risk framework. A set of scalable data-driven guidelines to ensure an org’s security. I never said I wasn’t a nerd, ok. deal with it. Most Risk frameworks yammer on for about 60 pages before getting to anything actionable CIS …