The National Reference Framework for Cybersecurity (QNRCS) allows organisations to reduce the risk associated with cyber threats, providing the basis for any entity to meet the minimum security requirements of networks and information systems.
The document in question reflects the Portuguese organisational reality, responding to the need to implement Identification, Protection, Detection, Response and Recovery measures against threats that jeopardise the security of cyberspace.
The QNRCS presents a set of recommendations so that organisations can define a strategy that involves their entire structure. Entities can join on a voluntary basis and benefit from a homogeneous approach that promotes a national response to cyber threats.
All the measures described in the National Reference Framework for Cybersecurity are available in the summary table.
The document is organised in an accessible way and divided by the five objectives: identify, protect, detect, respond and recover; which allows a more simplified visualisation.
CiberCheckUp is an instrument that allows assessing the state of an organisation in terms of cybersecurity, considering the National Reference Framework for Cybersecurity and the Evaluation Framework of Minimum Capacities in Cybersecurity. It is a complementary product to the National Reference Framework for Cybersecurity, responding to the strategy of the National Centre for Cybersecurity, as regards the availability of benchmarks and support tools.