Posts

A3. Asset management

Principle Everything required to deliver, maintain or support networks and information systems for…

Read more
/by

A2. Risk management

Principle The organisation takes appropriate steps to identify, assess and understand security risks…

Read more
/by

II. Establish control

Once you gain better control of your supply chain you will be able…

Read more
/by

Assessing supply chain security

The idea is to give you some concrete examples of good and bad…

Read more
/by

The NIS Guidance Collection

Introduction The EU Directive on the security of network and information systems (NIS)…

Read more
/by

Example supply chain attacks

Outlined below are examples of supply chain attacks that illustrate the challenges organisations face. Attacks…

Read more
/by

B4. System security

Principle Network and information systems and technology critical for the delivery of essential…

Read more
/by

C2. Proactive security event discovery

Principle The organisation detects, within networks and information systems, malicious activity affecting, or…

Read more
/by

B3. Data security

Principle Data stored or transmitted electronically is protected from actions such as unauthorised…

Read more
/by

Objective D: Minimising the impact of cyber security incidents

Principles under this Objective D1. Response and recovery planning Putting suitable incident management…

Read more
/by