Conklin, Wm. Arthur2019-06-242019-06-24December 22018-12December 2https://hdl.handle.net/10657/4048Small and medium size businesses have a lower chance of detecting and preventing cyber-attacks due to the high cost associated with adopting the latest security solutions and frameworks. This thesis presents a potential approach to implement most of the CIS Critical Security Controls without the need to dedicate a large budget to acquire commercial security solutions. An organization can adopt open source security solutions along with Windows built-in tools to cover most of the CIS controls if the organization implemented the policies and procedures necessary for each control. Any organization including small and medium size business can start improving their security posture by utilizing the cost-effective solutions mentioned throughout this research.application/pdfengThe author of this work is the copyright owner. UH Libraries and the Texas Digital Library have their permission to store and provide access to this work. Further transmission, reproduction, or presentation of this work is prohibited except with permission of the author(s).Open Source SoftwareInformation SecurityCritical Security ControlsLow Budget SecurityCybersecurity2019-06-24Thesisborn digital