Sicura and CIS Announce Partnership for Integrated Cybersecurity Remediation, Delivering Actionable Security Insight and Improved Cyber Hygiene


BALTIMORE, Md. & EAST GREENBUSH, N.Y., July 12, 2022 – Sicura, a leading security automation platform that bridges the gap between security and engineering teams, and the Center for Internet Security, Inc. (CIS®),an organization driving improved security and compliance standards in the government and commercial sector, announced the launch of an official partnership. Moving forward, the Sicura platform will include the integrated CIS-CAT®  Pro Assessor to further assist organizations with the implementation of CIS Benchmarks.

Sicura enables customers to automatically assess and remediate the CIS industry-standard for system-level controls. With the integrated product, the CIS-CAT Pro Assessor identifies security issues and with one click, the Sicura engine allows for immediate resolving of those issues. The current implementation supports the NIST Cybersecurity Framework, DISA STIGs, and CIS Benchmarks for a variety of architectures. Sicura is already certified by CIS to enforce and remediate against the CIS Benchmarks. 

"We’re proud to partner with CIS and deliver industry-leading compliance and ease-of-use to customers worldwide, combining CIS’s best practices with Sicura’s ability to remediate across systems,” said Lisa Umberger, CEO of Sicura. “As a security engineer with over a decade of experience at the NSA, I trust CIS as simply the best set of technical controls to improve security posture.”

“We’re excited to continue to work with Sicura to deliver automated security assessment and remediation services,” said Curtis Dukes, CIS Executive Vice President and General Manager, Security Best Practices. “This integration will serve users by allowing them to take direct action after an assessment, and will pave the way for future users to begin progress toward improved cyber hygiene.” 

About Sicura

Press Contact :: Arianne Price,
Sicura is the automated security platform for DevOps teams. Sicura automatically enforces and remediates technical security controls in a DevSecOps platform to bridge the gap between security and engineering teams. Our platform fixes misconfigurations, prevents breaches, and remediates security drift. We automate security into DevOps workflows and give engineers their time back. To learn more, visit

About CIS
Press Contact :: Kelly Wyland,
The Center for Internet Security, Inc. (CIS®) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. We are a community-driven nonprofit, responsible for the CIS Critical Security Controls® and CIS Benchmarks, globally recognized best practices for securing IT systems and data. We lead a global community of IT professionals to continuously evolve these standards and provide products and services to proactively safeguard against emerging threats. Our CIS Hardened Images® provide secure, on-demand, scalable computing environments in the cloud. CIS is home to the Multi-State Information Sharing and Analysis Center® (MS-ISAC®), the trusted resource for cyber threat prevention, protection, response, and recovery for U.S. State, Local, Tribal, and Territorial (SLTT) government entities, and the Elections Infrastructure Information Sharing and Analysis Center® (EI-ISAC®), which supports the rapidly changing cybersecurity needs of U.S. election offices. To learn more, visit or follow us on Twitter: @CISecurity.