Posts

NCSC IT: How the NCSC built its own IT system

“When are you going to share the design of the NCSC IT system?”…

Read more
/by

B4. System security

Principle Network and information systems and technology critical for the delivery of essential…

Read more
/by

A2. Risk management

Principle The organisation takes appropriate steps to identify, assess and understand security risks…

Read more
/by

IV. Continuous improvement

  11. Encourage the continuous improvement of security within your supply chain Encourage your…

Read more
/by

B5. Resilient networks and systems

Principle The organisation builds resilience against cyber-attack and system failure into the design,…

Read more
/by

Example supply chain attacks

Outlined below are examples of supply chain attacks that illustrate the challenges organisations face. Attacks…

Read more
/by

B2. Identity and access control

Principle The organisation understands, documents and manages access to systems and functions supporting…

Read more
/by

D2. Lessons learned

Principle When an incident occurs, steps must be taken to understand its root…

Read more
/by

The NIS Guidance Collection

Introduction The EU Directive on the security of network and information systems (NIS)…

Read more
/by

Objective C: Detecting cyber security events

Principles under this Objective C1. Security Monitoring Monitoring to detect potential security problems…

Read more
/by