Guidelines designed to help enterprises address all critical aspects of cyber security. Developed by a consortium of US Government agencies and private industry, assembled under the auspices of the Center for Strategic and International Studies. US agencies were joined by agencies from Australia and the United Kingdom in the development of the Twenty Controls, which are rapidly becoming an international standard in cyber security audits. Also known as the Twenty Critical Security Controls, the Consensus Audit Guidelines, and the Twenty Critical Security Controls for Effective Cyber Defense.
Twenty Controls definition