Guides and Frameworks

Risk Management Guide The Risk Management Guide in Information Security and Cybersecurity aims to guide organisations in carrying out an autonomous cybersecurity risk management process at an organisational level, making it possible to assess the level of risk associated with different assets and to list a set of security actions and measures that foster the resilience of their networks and information systems.

• READ MORE +

Guide to Selecting Multifactor Authentication Solutions The Guide To Selecting Multifactor Authentication Solutions is a framework whose aim is to define a structured approach adapted to the specific needs of each organisation in the process of adopting multifactor authentication mechanisms.

• READ MORE +

Digital Transition Guide The Digital Transition and Cybersecurity Guide (DTCG) aims to guide organisations in preventing cybersecurity risks during their digital transition processes. This guide considers a set of digital transition objectives that can be adopted by different organisations in order to achieve their business objectives. With the purpose of promoting a digital transition aligned with the possible cybersecurity risks inherent in the process, the guide identifies a set of risks and suggests controls to be implemented to mitigate them.

• READ MORE +

Cybersecurity Competencies Framework CNCS has made available a Cybersecurity Competencies Framework aimed at all those interested in training and hiring professionals, among other areas in which identifying cybersecurity competencies is important.

• READ MORE +

Crisis Communication Framework The Cybersecurity Risk and Crisis Communication Framework (Reference) aims to help national organisations communicate in cybersecurity risk and crisis contexts, listing steps, identifying essential elements and functions in the communication team formed for these situations, and inviting continuous improvement of the communication plans in question.

• READ MORE +