Audit modelCompliance audit NIST cybersecurity framework
1. IDENTIFY (ID)
1. Asset Management (ID.AM)
References: CIS CSC 1 | COBIT 5 BAI09.01, BAI09.02 | ISA 62443-2-1:2009 4.2.3.4 | ISA 62443-3-3:2013 SR 7.8 | ISO/IEC 27001:2013 A.8.1.1, A.8.1.2 | NIST SP 800-53 Rev. 4 CM-8, PM-5
References: CIS CSC 2 | COBIT 5 BAI09.01, BAI09.02, BAI09.05 | ISA 62443-2-1:2009 4.2.3.4 | ISA 62443-3-3:2013 SR 7.8 | ISO/IEC 27001:2013 A.8.1.1, A.8.1.2, A.12.5.1 | NIST SP 800-53 Rev. 4 CM-8, PM-5
References: CIS CSC 12 | COBIT 5 DSS05.02 | ISA 62443-2-1:2009 4.2.3.4 | ISO/IEC 27001:2013 A.13.2.1, A.13.2.2 | NIST SP 800-53 Rev. 4 AC-4, CA-3, CA-9, PL-8
References: CIS CSC 12 | COBIT 5 APO02.02, APO10.04, DSS01.02 | ISO/IEC 27001:2013 A.11.2.6 | NIST SP 800-53 Rev. 4 AC-20, SA-9
References: CIS CSC 13, 14 | COBIT 5 APO03.03, APO03.04, APO12.01, BAI04.02, BAI09.02 | ISA 62443-2-1:2009 4.2.3.6 | ISO/IEC 27001:2013 A.8.2.1 | NIST SP 800-53 Rev. 4 CP-2, RA-2, SA-14, SC-6
References: CIS CSC 17, 19 | COBIT 5 APO01.02, APO07.06, APO13.01, DSS06.03 | ISA 62443-2-1:2009 4.3.2.3.3 | ISO/IEC 27001:2013 A.6.1.1 | NIST SP 800-53 Rev. 4 CP-2, PS-7, PM-11
2. Business Environment (ID.BE)
References: COBIT 5 APO08.01, APO08.04, APO08.05, APO10.03, APO10.04, APO10.05 | ISO/IEC 27001:2013 A.15.1.1, A.15.1.2, A.15.1.3, A.15.2.1, A.15.2.2 | NIST SP 800-53 Rev. 4 CP-2, SA-12
References: COBIT 5 APO02.06, APO03.01 | ISO/IEC 27001:2013 Clause 4.1 | NIST SP 800-53 Rev. 4 PM-8
References: COBIT 5 APO02.01, APO02.06, APO03.01 | ISA 62443-2-1:2009 4.2.2.1, 4.2.3.6 | NIST SP 800-53 Rev. 4 PM-11, SA-14
References: COBIT 5 APO10.01, BAI04.02, BAI09.02 | ISO/IEC 27001:2013 A.11.2.2, A.11.2.3, A.12.1.3 | NIST SP 800-53 Rev. 4 CP-8, PE-9, PE-11, PM-8, SA-14
References: COBIT 5 BAI03.02, DSS04.02 | ISO/IEC 27001:2013 A.11.1.4, A.17.1.1, A.17.1.2, A.17.2.1 | NIST SP 800-53 Rev. 4 CP-2, CP-11, SA-13, SA-14
3. Governance (ID.GV)
References: CIS CSC 19 | COBIT 5 APO01.03, APO13.01, EDM01.01, EDM01.02 | ISA 62443-2-1:2009 4.3.2.6 | ISO/IEC 27001:2013 A.5.1.1 | NIST SP 800-53 Rev. 4 -1 controls from all security control families
References: CIS CSC 19 | COBIT 5 APO01.02, APO10.03, APO13.02, DSS05.04 | ISA 62443-2-1:2009 4.3.2.3.3 | ISO/IEC 27001:2013 A.6.1.1, A.7.2.1, A.15.1.1 | NIST SP 800-53 Rev. 4 PS-7, PM-1, PM-2
References: CIS CSC 19 | COBIT 5 BAI02.01, MEA03.01, MEA03.04 | ISA 62443-2-1:2009 4.4.3.7 | ISO/IEC 27001:2013 A.18.1.1, A.18.1.2, A.18.1.3, A.18.1.4, A.18.1.5 | NIST SP 800-53 Rev. 4 -1 controls from all security control families
References: COBIT 5 EDM03.02, APO12.02, APO12.05, DSS04.02 ; ISA 62443-2-1:2009 4.2.3.1, 4.2.3.3, 4.2.3.8, 4.2.3.9, 4.2.3.11, 4.3.2.4.3, 4.3.2.6.3 ; ISO/IEC 27001:2013 Clause 6 ; NIST SP 800-53 Rev. 4 SA-2, PM-3, PM-7, PM-9, PM-10, PM-11
4. Risk Assessment (ID.RA)
References: CIS CSC 4 ; COBIT 5 APO12.01, APO12.02, APO12.03, APO12.04, DSS05.01, DSS05.02 ; ISA 62443-2-1:2009 4.2.3, 4.2.3.7, 4.2.3.9, 4.2.3.12 ; ISO/IEC 27001:2013 A.12.6.1, A.18.2.3 ; NIST SP 800-53 Rev. 4 CA-2, CA-7, CA-8, RA-3, RA-5, SA-5, SA-11, SI-2, SI-4, SI-5
References: CIS CSC 4 ; COBIT 5 BAI08.01 ; ISA 62443-2-1:2009 4.2.3, 4.2.3.9, 4.2.3.12 ; ISO/IEC 27001:2013 A.6.1.4 ; NIST SP 800-53 Rev. 4 SI-5, PM-15, PM-16
References: CIS CSC 4 ; COBIT 5 APO12.01, APO12.02, APO12.03, APO12.04 ; ISA 62443-2-1:2009 4.2.3, 4.2.3.9, 4.2.3.12 ; ISO/IEC 27001:2013 Clause 6.1.2 ; NIST SP 800-53 Rev. 4 RA-3, SI-5, PM-12, PM-16
References: CIS CSC 4 ; COBIT 5 DSS04.02 ; ISA 62443-2-1:2009 4.2.3, 4.2.3.9, 4.2.3.12 ; ISO/IEC 27001:2013 A.16.1.6, Clause 6.1.2 ; NIST SP 800-53 Rev. 4 RA-2, RA-3, SA-14, PM-9, PM-11
References: CIS CSC 4 ; COBIT 5 APO12.02 ; ISO/IEC 27001:2013 A.12.6.1 ; NIST SP 800-53 Rev. 4 RA-2, RA-3, PM-16
References: CIS CSC 4 ; COBIT 5 APO12.05, APO13.02 ; ISO/IEC 27001:2013 Clause 6.1.3 ; NIST SP 800-53 Rev. 4 PM-4, PM-9
5. Risk Management Strategy (ID.RM)
References: CIS CSC 4 ; COBIT 5 APO12.04, APO12.05, APO13.02, BAI02.03, BAI04.02 ; ISA 62443-2-1:2009 4.3.4.2 ; ISO/IEC 27001:2013 Clause 6.1.3, Clause 8.3, Clause 9.3 ; NIST SP 800-53 Rev. 4 PM-9
References: COBIT 5 APO12.06 ; ISA 62443-2-1:2009 4.3.2.6.5 ; ISO/IEC 27001:2013 Clause 6.1.3, Clause 8.3 ; NIST SP 800-53 Rev. 4 PM-9
References: COBIT 5 APO12.02 ; ISO/IEC 27001:2013 Clause 6.1.3, Clause 8.3 ; NIST SP 800-53 Rev. 4 SA-14, PM-8, PM-9, PM-11
6. Supply Chain Risk Management (ID.SC)
References: CIS CSC 4 ; COBIT 5 APO10.01, APO10.04, APO12.04, APO12.05, APO13.02, BAI01.03, BAI02.03, BAI04.02 ; ISA 62443-2-1:2009 4.3.4.2 ; ISO/IEC 27001:2013 A.15.1.1, A.15.1.2, A.15.1.3, A.15.2.1, A.15.2.2 ; NIST SP 800-53 Rev. 4 SA-9, SA-12, PM-9
References: COBIT 5 APO10.01, APO10.02, APO10.04, APO10.05, APO12.01, APO12.02, APO12.03, APO12.04, APO12.05, APO12.06, APO13.02, BAI02.03 ; ISA 62443-2-1:2009 4.2.3.1, 4.2.3.2, 4.2.3.3, 4.2.3.4, 4.2.3.6, 4.2.3.8, 4.2.3.9, 4.2.3.10, 4.2.3.12, 4.2.3.13, 4.2.3.14 ; ISO/IEC 27001:2013 A.15.2.1, A.15.2.2 ; NIST SP 800-53 Rev. 4 RA-2, RA-3, SA-12, SA-14, SA-15, PM-9
References: COBIT 5 APO10.01, APO10.02, APO10.03, APO10.04, APO10.05 ; ISA 62443-2-1:2009 4.3.2.6.4, 4.3.2.6.7 ; ISO/IEC 27001:2013 A.15.1.1, A.15.1.2, A.15.1.3 ; NIST SP 800-53 Rev. 4 SA-9, SA-11, SA-12, PM-9
References: COBIT 5 APO10.01, APO10.03, APO10.04, APO10.05, MEA01.01, MEA01.02, MEA01.03, MEA01.04, MEA01.05 ; ISA 62443-2-1:2009 4.3.2.6.7 ; ISA 62443-3-3:2013 SR 6.1 ; ISO/IEC 27001:2013 A.15.2.1, A.15.2.2 ; NIST SP 800-53 Rev. 4 AU-2, AU-6, AU-12, AU-16, PS-7, SA-9, SA-12
References: CIS CSC 19, 20 ; COBIT 5 DSS04.04 ; ISA 62443-2-1:2009 4.3.2.5.7, 4.3.4.5.11 ; ISA 62443-3-3:2013 SR 2.8, SR 3.3, SR.6.1, SR 7.3, SR 7.4 ; ISO/IEC 27001:2013 A.17.1.3 ; NIST SP 800-53 Rev. 4 CP-2, CP-4, IR-3, IR-4, IR-6, IR-8, IR-9
2. PROTECT (PR)
1. Identity Management, Authentication and Access Control (PR.AC)
References: CIS CSC 1, 5, 15, 16 ; COBIT 5 DSS05.04, DSS06.03 ; ISA 62443-2-1:2009 4.3.3.5.1 ; ISA 62443-3-3:2013 SR 1.1, SR 1.2, SR 1.3, SR 1.4, SR 1.5, SR 1.7, SR 1.8, SR 1.9 ; ISO/IEC 27001:2013 A.9.2.1, A.9.2.2, A.9.2.3, A.9.2.4, A.9.2.6, A.9.3.1, A.9.4.2, A.9.4.3 ; NIST SP 800-53 Rev. 4 AC-1, AC-2, IA-1, IA-2, IA-3, IA-4, IA-5, IA-6, IA-7, IA-8, IA-9, IA-10, IA-11
References: COBIT 5 DSS01.04, DSS05.05 ; ISA 62443-2-1:2009 4.3.3.3.2, 4.3.3.3.8 ; ISO/IEC 27001:2013 A.11.1.1, A.11.1.2, A.11.1.3, A.11.1.4, A.11.1.5, A.11.1.6, A.11.2.1, A.11.2.3, A.11.2.5, A.11.2.6, A.11.2.7, A.11.2.8 ; NIST SP 800-53 Rev. 4 PE-2, PE-3, PE-4, PE-5, PE-6, PE-8
References: CIS CSC 12 ; COBIT 5 APO13.01, DSS01.04, DSS05.03 ; ISA 62443-2-1:2009 4.3.3.6.6 ; ISA 62443-3-3:2013 SR 1.13, SR 2.6 ; ISO/IEC 27001:2013 A.6.2.1, A.6.2.2, A.11.2.6, A.13.1.1, A.13.2.1 ; NIST SP 800-53 Rev. 4 AC-1, AC-17, AC-19, AC-20, SC-15
References: CIS CSC 3, 5, 12, 14, 15, 16, 18 ; COBIT 5 DSS05.04 ; ISA 62443-2-1:2009 4.3.3.7.3 ; ISA 62443-3-3:2013 SR 2.1 ; ISO/IEC 27001:2013 A.6.1.2, A.9.1.2, A.9.2.3, A.9.4.1, A.9.4.4, A.9.4.5 ; NIST SP 800-53 Rev. 4 AC-1, AC-2, AC-3, AC-5, AC-6, AC-14, AC-16, AC-24
References: CIS CSC 9, 14, 15, 18 ; COBIT 5 DSS01.05, DSS05.02 ; ISA 62443-2-1:2009 4.3.3.4 ; ISA 62443-3-3:2013 SR 3.1, SR 3.8 ; ISO/IEC 27001:2013 A.13.1.1, A.13.1.3, A.13.2.1, A.14.1.2, A.14.1.3 ; NIST SP 800-53 Rev. 4 AC-4, AC-10, SC-7
References: CIS CSC, 16 ; COBIT 5 DSS05.04, DSS05.05, DSS05.07, DSS06.03 ; ISA 62443-2-1:2009 4.3.3.2.2, 4.3.3.5.2, 4.3.3.7.2, 4.3.3.7.4 ; ISA 62443-3-3:2013 SR 1.1, SR 1.2, SR 1.4, SR 1.5, SR 1.9, SR 2.1 ; ISO/IEC 27001:2013, A.7.1.1, A.9.2.1 ; NIST SP 800-53 Rev. 4 AC-1, AC-2, AC-3, AC-16, AC-19, AC-24, IA-1, IA-2, IA-4, IA-5, IA-8, PE-2, PS-3
References: CIS CSC 1, 12, 15, 16 ; COBIT 5 DSS05.04, DSS05.10, DSS06.10 ; ISA 62443-2-1:2009 4.3.3.6.1, 4.3.3.6.2, 4.3.3.6.3, 4.3.3.6.4, 4.3.3.6.5, 4.3.3.6.6, 4.3.3.6.7, 4.3.3.6.8, 4.3.3.6.9 ; ISA 62443-3-3:2013 SR 1.1, SR 1.2, SR 1.5, SR 1.7, SR 1.8, SR 1.9, SR 1.10 ; ISO/IEC 27001:2013 A.9.2.1, A.9.2.4, A.9.3.1, A.9.4.2, A.9.4.3, A.18.1.4 ; NIST SP 800-53 Rev. 4 AC-7, AC-8, AC-9, AC-11, AC-12, AC-14, IA-1, IA-2, IA-3, IA-4, IA-5, IA-8, IA-9, IA-10, IA-11
2. Awareness and Training (PR.AT)
References: CIS CSC 17, 18 ; COBIT 5 APO07.03, BAI05.07 ; ISA 62443-2-1:2009 4.3.2.4.2 ; ISO/IEC 27001:2013 A.7.2.2, A.12.2.1 ; NIST SP 800-53 Rev. 4 AT-2, PM-13
References: CIS CSC 5, 17, 18 ; COBIT 5 APO07.02, DSS05.04, DSS06.03 ; ISA 62443-2-1:2009 4.3.2.4.2, 4.3.2.4.3 ; ISO/IEC 27001:2013 A.6.1.1, A.7.2.2 ; NIST SP 800-53 Rev. 4 AT-3, PM-13
References: CIS CSC 17 ; COBIT 5 APO07.03, APO07.06, APO10.04, APO10.05 ; ISA 62443-2-1:2009 4.3.2.4.2 ; ISO/IEC 27001:2013 A.6.1.1, A.7.2.1, A.7.2.2 ; NIST SP 800-53 Rev. 4 PS-7, SA-9, SA-16
References: CIS CSC 17, 19 ; COBIT 5 EDM01.01, APO01.02, APO07.03 ; ISA 62443-2-1:2009 4.3.2.4.2 ; ISO/IEC 27001:2013 A.6.1.1, A.7.2.2 ; NIST SP 800-53 Rev. 4 AT-3, PM-13
References: CIS CSC 17 ; COBIT 5 APO07.03 ; ISA 62443-2-1:2009 4.3.2.4.2 ; ISO/IEC 27001:2013 A.6.1.1, A.7.2.2 ; NIST SP 800-53 Rev. 4 AT-3, IR-2, PM-13
3. Data Security (PR.DS)
References: CIS CSC 13, 14 ; COBIT 5 APO01.06, BAI02.01, BAI06.01, DSS04.07, DSS05.03, DSS06.06 ; ISA 62443-3-3:2013 SR 3.4, SR 4.1 ; ISO/IEC 27001:2013 A.8.2.3 ; NIST SP 800-53 Rev. 4 MP-8, SC-12, SC-28
References: CIS CSC 13, 14 ; COBIT 5 APO01.06, DSS05.02, DSS06.06 ; ISA 62443-3-3:2013 SR 3.1, SR 3.8, SR 4.1, SR 4.2 ; ISO/IEC 27001:2013 A.8.2.3, A.13.1.1, A.13.2.1, A.13.2.3, A.14.1.2, A.14.1.3 ; NIST SP 800-53 Rev. 4 SC-8, SC-11, SC-12
References: CIS CSC 1 ; COBIT 5 BAI09.03 ; ISA 62443-2-1:2009 4.3.3.3.9, 4.3.4.4.1 ; ISA 62443-3-3:2013 SR 4.2 ; ISO/IEC 27001:2013 A.8.2.3, A.8.3.1, A.8.3.2, A.8.3.3, A.11.2.5, A.11.2.7 ; NIST SP 800-53 Rev. 4 CM-8, MP-6, PE-16
References: CIS CSC 1, 2, 13 ; COBIT 5 APO13.01, BAI04.04 ; ISA 62443-3-3:2013 SR 7.1, SR 7.2 ; ISO/IEC 27001:2013 A.12.1.3, A.17.2.1 ; NIST SP 800-53 Rev. 4 AU-4, CP-2, SC-5
References: CIS CSC 13 ; COBIT 5 APO01.06, DSS05.04, DSS05.07, DSS06.02 ; ISA 62443-3-3:2013 SR 5.2 ; ISO/IEC 27001:2013 A.6.1.2, A.7.1.1, A.7.1.2, A.7.3.1, A.8.2.2, A.8.2.3, A.9.1.1, A.9.1.2, A.9.2.3, A.9.4.1, A.9.4.4, A.9.4.5, A.10.1.1, A.11.1.4, A.11.1.5, A.11.2.1, A.13.1.1, A.13.1.3, A.13.2.1, A.13.2.3, A.13.2.4, A.14.1.2, A.14.1.3 ; NIST SP 800-53 Rev. 4 AC-4, AC-5, AC-6, PE-19, PS-3, PS-6, SC-7, SC-8, SC-13, SC-31, SI-4
References: CIS CSC 2, 3 ; COBIT 5 APO01.06, BAI06.01, DSS06.02 ; ISA 62443-3-3:2013 SR 3.1, SR 3.3, SR 3.4, SR 3.8 ; ISO/IEC 27001:2013 A.12.2.1, A.12.5.1, A.14.1.2, A.14.1.3, A.14.2.4 ; NIST SP 800-53 Rev. 4 SC-16, SI-7
References: CIS CSC 18, 20 ; COBIT 5 BAI03.08, BAI07.04 ; ISO/IEC 27001:2013 A.12.1.4 ; NIST SP 800-53 Rev. 4 CM-2
References: COBIT 5 BAI03.05 ; ISA 62443-2-1:2009 4.3.4.4.4 ; ISO/IEC 27001:2013 A.11.2.4 ; NIST SP 800-53 Rev. 4 SA-10, SI-7
4. Information Protection Processes and Procedures (PR.IP)
References: CIS CSC 3, 9, 11 ; COBIT 5 BAI10.01, BAI10.02, BAI10.03, BAI10.05 ; ISA 62443-2-1:2009 4.3.4.3.2, 4.3.4.3.3 ; ISA 62443-3-3:2013 SR 7.6 ; ISO/IEC 27001:2013 A.12.1.2, A.12.5.1, A.12.6.2, A.14.2.2, A.14.2.3, A.14.2.4 ; NIST SP 800-53 Rev. 4 CM-2, CM-3, CM-4, CM-5, CM-6, CM-7, CM-9, SA-10
References: CIS CSC 18 ; COBIT 5 APO13.01, BAI03.01, BAI03.02, BAI03.03 ; ISA 62443-2-1:2009 4.3.4.3.3 ; ISO/IEC 27001:2013 A.6.1.5, A.14.1.1, A.14.2.1, A.14.2.5 ; NIST SP 800-53 Rev. 4 PL-8, SA-3, SA-4, SA-8, SA-10, SA-11, SA-12, SA-15, SA-17, SI-12, SI-13, SI-14, SI-16, SI-17
References: CIS CSC 3, 11 ; COBIT 5 BAI01.06, BAI06.01 ; ISA 62443-2-1:2009 4.3.4.3.2, 4.3.4.3.3 ; ISA 62443-3-3:2013 SR 7.6 ; ISO/IEC 27001:2013 A.12.1.2, A.12.5.1, A.12.6.2, A.14.2.2, A.14.2.3, A.14.2.4 ; NIST SP 800-53 Rev. 4 CM-3, CM-4, SA-10
References: CIS CSC 10 ; COBIT 5 APO13.01, DSS01.01, DSS04.07 ; ISA 62443-2-1:2009 4.3.4.3.9 ; ISA 62443-3-3:2013 SR 7.3, SR 7.4 ; ISO/IEC 27001:2013 A.12.3.1, A.17.1.2, A.17.1.3, A.18.1.3 ; NIST SP 800-53 Rev. 4 CP-4, CP-6, CP-9
References: COBIT 5 DSS01.04, DSS05.05 ; ISA 62443-2-1:2009 4.3.3.3.1 4.3.3.3.2, 4.3.3.3.3, 4.3.3.3.5, 4.3.3.3.6 ; ISO/IEC 27001:2013 A.11.1.4, A.11.2.1, A.11.2.2, A.11.2.3 ; NIST SP 800-53 Rev. 4 PE-10, PE-12, PE-13, PE-14, PE-15, PE-18
References: COBIT 5 BAI09.03, DSS05.06 ; ISA 62443-2-1:2009 4.3.4.4.4 ; ISA 62443-3-3:2013 SR 4.2 ; ISO/IEC 27001:2013 A.8.2.3, A.8.3.1, A.8.3.2, A.11.2.7 ; NIST SP 800-53 Rev. 4 MP-6
References: COBIT 5 APO11.06, APO12.06, DSS04.05 ; ISA 62443-2-1:2009 4.4.3.1, 4.4.3.2, 4.4.3.3, 4.4.3.4, 4.4.3.5, 4.4.3.6, 4.4.3.7, 4.4.3.8 ; ISO/IEC 27001:2013 A.16.1.6, Clause 9, Clause 10 ; NIST SP 800-53 Rev. 4 CA-2, CA-7, CP-2, IR-8, PL-2, PM-6
References: COBIT 5 BAI08.04, DSS03.04 ; ISO/IEC 27001:2013 A.16.1.6 ; NIST SP 800-53 Rev. 4 AC-21, CA-7, SI-4
References: CIS CSC 19 ; COBIT 5 APO12.06, DSS04.03 ; ISA 62443-2-1:2009 4.3.2.5.3, 4.3.4.5.1 ; ISO/IEC 27001:2013 A.16.1.1, A.17.1.1, A.17.1.2, A.17.1.3 ; NIST SP 800-53 Rev. 4 CP-2, CP-7, CP-12, CP-13, IR-7, IR-8, IR-9, PE-17
References: CIS CSC 19, 20 ; COBIT 5 DSS04.04 ; ISA 62443-2-1:2009 4.3.2.5.7, 4.3.4.5.11 ; ISA 62443-3-3:2013 SR 3.3 ; ISO/IEC 27001:2013 A.17.1.3 ; NIST SP 800-53 Rev. 4 CP-4, IR-3, PM-14
References: CIS CSC 5, 16 ; COBIT 5 APO07.01, APO07.02, APO07.03, APO07.04, APO07.05 ; ISA 62443-2-1:2009 4.3.3.2.1, 4.3.3.2.2, 4.3.3.2.3 ; ISO/IEC 27001:2013 A.7.1.1, A.7.1.2, A.7.2.1, A.7.2.2, A.7.2.3, A.7.3.1, A.8.1.4 ; NIST SP 800-53 Rev. 4 PS-1, PS-2, PS-3, PS-4, PS-5, PS-6, PS-7, PS-8, SA-21
References: CIS CSC 4, 18, 20 ; COBIT 5 BAI03.10, DSS05.01, DSS05.02 ; ISO/IEC 27001:2013 A.12.6.1, A.14.2.3, A.16.1.3, A.18.2.2, A.18.2.3 ; NIST SP 800-53 Rev. 4 RA-3, RA-5, SI-2
5. Maintenance (PR.MA)
References: COBIT 5 BAI03.10, BAI09.02, BAI09.03, DSS01.05 ; ISA 62443-2-1:2009 4.3.3.3.7 ; ISO/IEC 27001:2013 A.11.1.2, A.11.2.4, A.11.2.5, A.11.2.6 ; NIST SP 800-53 Rev. 4 MA-2, MA-3, MA-5, MA-6
References: CIS CSC 3, 5 ; COBIT 5 DSS05.04 ; ISA 62443-2-1:2009 4.3.3.6.5, 4.3.3.6.6, 4.3.3.6.7, 4.3.3.6.8 ; ISO/IEC 27001:2013 A.11.2.4, A.15.1.1, A.15.2.1 ; NIST SP 800-53 Rev. 4 MA-4
6. Protective Technology (PR.PT)
References: CIS CSC 1, 3, 5, 6, 14, 15, 16 ; COBIT 5 APO11.04, BAI03.05, DSS05.04, DSS05.07, MEA02.01 ; ISA 62443-2-1:2009 4.3.3.3.9, 4.3.3.5.8, 4.3.4.4.7, 4.4.2.1, 4.4.2.2, 4.4.2.4 ; ISA 62443-3-3:2013 SR 2.8, SR 2.9, SR 2.10, SR 2.11, SR 2.12 ; ISO/IEC 27001:2013 A.12.4.1, A.12.4.2, A.12.4.3, A.12.4.4, A.12.7.1 ; NIST SP 800-53 Rev. 4 AU Family
References: CIS CSC 8, 13 ; COBIT 5 APO13.01, DSS05.02, DSS05.06 ; ISA 62443-3-3:2013 SR 2.3 ; ISO/IEC 27001:2013 A.8.2.1, A.8.2.2, A.8.2.3, A.8.3.1, A.8.3.3, A.11.2.9 ; NIST SP 800-53 Rev. 4 MP-2, MP-3, MP-4, MP-5, MP-7, MP-8
References: CIS CSC 3, 11, 14 ; COBIT 5 DSS05.02, DSS05.05, DSS06.06 ; ISA 62443-2-1:2009 4.3.3.5.1, 4.3.3.5.2, 4.3.3.5.3, 4.3.3.5.4, 4.3.3.5.5, 4.3.3.5.6, 4.3.3.5.7, 4.3.3.5.8, 4.3.3.6.1, 4.3.3.6.2, 4.3.3.6.3, 4.3.3.6.4, 4.3.3.6.5, 4.3.3.6.6, 4.3.3.6.7, 4.3.3.6.8, 4.3.3.6.9, 4.3.3.7.1, 4.3.3.7.2, 4.3.3.7.3, 4.3.3.7.4 ; ISA 62443-3-3:2013 SR 1.1, SR 1.2, SR 1.3, SR 1.4, SR 1.5, SR 1.6, SR 1.7, SR 1.8, SR 1.9, SR 1.10, SR 1.11, SR 1.12, SR 1.13, SR 2.1, SR 2.2, SR 2.3, SR 2.4, SR 2.5, SR 2.6, SR 2.7 ; ISO/IEC 27001:2013 A.9.1.2 ; NIST SP 800-53 Rev. 4 AC-3, CM-7
References: CIS CSC 8, 12, 15 ; COBIT 5 DSS05.02, APO13.01 ; ISA 62443-3-3:2013 SR 3.1, SR 3.5, SR 3.8, SR 4.1, SR 4.3, SR 5.1, SR 5.2, SR 5.3, SR 7.1, SR 7.6 ; ISO/IEC 27001:2013 A.13.1.1, A.13.2.1, A.14.1.3 ; NIST SP 800-53 Rev. 4 AC-4, AC-17, AC-18, CP-8, SC-7, SC-19, SC-20, SC-21, SC-22, SC-23, SC-24, SC-25, SC-29, SC-32, SC-36, SC-37, SC-38, SC-39, SC-40, SC-41, SC-43
References: COBIT 5 BAI04.01, BAI04.02, BAI04.03, BAI04.04, BAI04.05, DSS01.05 ; ISA 62443-2-1:2009 4.3.2.5.2 ; ISA 62443-3-3:2013 SR 7.1, SR 7.2 ; ISO/IEC 27001:2013 A.17.1.2, A.17.2.1 ; NIST SP 800-53 Rev. 4 CP-7, CP-8, CP-11, CP-13, PL-8, SA-14, SC-6
3. DETECT (DE)
1. Anomalies and Events (DE.AE)
References: CIS CSC 1, 4, 6, 12, 13, 15, 16 ; COBIT 5 DSS03.01 ; ISA 62443-2-1:2009 4.4.3.3 ; ISO/IEC 27001:2013 A.12.1.1, A.12.1.2, A.13.1.1, A.13.1.2 ; NIST SP 800-53 Rev. 4 AC-4, CA-3, CM-2, SI-4
References: CIS CSC 3, 6, 13, 15 ; COBIT 5 DSS05.07 ; ISA 62443-2-1:2009 4.3.4.5.6, 4.3.4.5.7, 4.3.4.5.8 ; ISA 62443-3-3:2013 SR 2.8, SR 2.9, SR 2.10, SR 2.11, SR 2.12, SR 3.9, SR 6.1, SR 6.2 ; ISO/IEC 27001:2013 A.12.4.1, A.16.1.1, A.16.1.4 ; NIST SP 800-53 Rev. 4 AU-6, CA-7, IR-4, SI-4
References: CIS CSC 1, 3, 4, 5, 6, 7, 8, 11, 12, 13, 14, 15, 16 ; COBIT 5 BAI08.02 ; ISA 62443-3-3:2013 SR 6.1 ; ISO/IEC 27001:2013 A.12.4.1, A.16.1.7 ; NIST SP 800-53 Rev. 4 AU-6, CA-7, IR-4, IR-5, IR-8, SI-4
References: CIS CSC 4, 6 ; COBIT 5 APO12.06, DSS03.01 ; ISO/IEC 27001:2013 A.16.1.4 ; NIST SP 800-53 Rev. 4 CP-2, IR-4, RA-3, SI-4
References: CIS CSC 6, 19 ; COBIT 5 APO12.06, DSS03.01 ; ISA 62443-2-1:2009 4.2.3.10 ; ISO/IEC 27001:2013 A.16.1.4 ; NIST SP 800-53 Rev. 4 IR-4, IR-5, IR-8
2. Security Continuous Monitoring (DE.CM)
References: CIS CSC 1, 7, 8, 12, 13, 15, 16 ; COBIT 5 DSS01.03, DSS03.05, DSS05.07 ; ISA 62443-3-3:2013 SR 6.2 ; NIST SP 800-53 Rev. 4 AC-2, AU-12, CA-7, CM-3, SC-5, SC-7, SI-4
References: COBIT 5 DSS01.04, DSS01.05 ; ISA 62443-2-1:2009 4.3.3.3.8 ; ISO/IEC 27001:2013 A.11.1.1, A.11.1.2 ; NIST SP 800-53 Rev. 4 CA-7, PE-3, PE-6, PE-20
References: CIS CSC 5, 7, 14, 16 ; COBIT 5 DSS05.07 ; ISA 62443-3-3:2013 SR 6.2 ; ISO/IEC 27001:2013 A.12.4.1, A.12.4.3 ; NIST SP 800-53 Rev. 4 AC-2, AU-12, AU-13, CA-7, CM-10, CM-11
References: CIS CSC 4, 7, 8, 12 ; COBIT 5 DSS05.01 ; ISA 62443-2-1:2009 4.3.4.3.8 ; ISA 62443-3-3:2013 SR 3.2 ; ISO/IEC 27001:2013 A.12.2.1 ; NIST SP 800-53 Rev. 4 SI-3, SI-8
References: CIS CSC 7, 8 ; COBIT 5 DSS05.01 ; ISA 62443-3-3:2013 SR 2.4 ; ISO/IEC 27001:2013 A.12.5.1, A.12.6.2 ; NIST SP 800-53 Rev. 4 SC-18, SI-4, SC-44
References: COBIT 5 APO07.06, APO10.05 ; ISO/IEC 27001:2013 A.14.2.7, A.15.2.1 ; NIST SP 800-53 Rev. 4 CA-7, PS-7, SA-4, SA-9, SI-4
References: CIS CSC 1, 2, 3, 5, 9, 12, 13, 15, 16 ; COBIT 5 DSS05.02, DSS05.05 ; ISO/IEC 27001:2013 A.12.4.1, A.14.2.7, A.15.2.1 ; NIST SP 800-53 Rev. 4 AU-12, CA-7, CM-3, CM-8, PE-3, PE-6, PE-20, SI-4
References: CIS CSC 4, 20 ; COBIT 5 BAI03.10, DSS05.01 ; ISA 62443-2-1:2009 4.2.3.1, 4.2.3.7 ; ISO/IEC 27001:2013 A.12.6.1 ; NIST SP 800-53 Rev. 4 RA-5
3. Detection Processes (DE.DP)
References: CIS CSC 19 ; COBIT 5 APO01.02, DSS05.01, DSS06.03 ; ISA 62443-2-1:2009 4.4.3.1 ; ISO/IEC 27001:2013 A.6.1.1, A.7.2.2 ; NIST SP 800-53 Rev. 4 CA-2, CA-7, PM-14
References: COBIT 5 DSS06.01, MEA03.03, MEA03.04 ; ISA 62443-2-1:2009 4.4.3.2 ; ISO/IEC 27001:2013 A.18.1.4, A.18.2.2, A.18.2.3 ; NIST SP 800-53 Rev. 4 AC-25, CA-2, CA-7, SA-18, SI-4, PM-14
References: COBIT 5 APO13.02, DSS05.02 ; ISA 62443-2-1:2009 4.4.3.2 ; ISA 62443-3-3:2013 SR 3.3 ; ISO/IEC 27001:2013 A.14.2.8 ; NIST SP 800-53 Rev. 4 CA-2, CA-7, PE-3, SI-3, SI-4, PM-14
References: CIS CSC 19 ; COBIT 5 APO08.04, APO12.06, DSS02.05 ; ISA 62443-2-1:2009 4.3.4.5.9 ; ISA 62443-3-3:2013 SR 6.1 ; ISO/IEC 27001:2013 A.16.1.2, A.16.1.3 ; NIST SP 800-53 Rev. 4 AU-6, CA-2, CA-7, RA-5, SI-4
References: COBIT 5 APO11.06, APO12.06, DSS04.05 ; ISA 62443-2-1:2009 4.4.3.4 ; ISO/IEC 27001:2013 A.16.1.6 ; NIST SP 800-53 Rev. 4, CA-2, CA-7, PL-2, RA-5, SI-4, PM-14
4. RESPOND (RS)
1. Response Planning (RS.RP)
References: CIS CSC 19 ; COBIT 5 APO12.06, BAI01.10 ; ISA 62443-2-1:2009 4.3.4.5.1 ; ISO/IEC 27001:2013 A.16.1.5 ; NIST SP 800-53 Rev. 4 CP-2, CP-10, IR-4, IR-8
2. Communications (RS.CO)
References: CIS CSC 19 ; COBIT 5 EDM03.02, APO01.02, APO12.03 ; ISA 62443-2-1:2009 4.3.4.5.2, 4.3.4.5.3, 4.3.4.5.4 ; ISO/IEC 27001:2013 A.6.1.1, A.7.2.2, A.16.1.1 ; NIST SP 800-53 Rev. 4 CP-2, CP-3, IR-3, IR-8
References: CIS CSC 19 ; COBIT 5 DSS01.03 ; ISA 62443-2-1:2009 4.3.4.5.5 ; ISO/IEC 27001:2013 A.6.1.3, A.16.1.2 ; NIST SP 800-53 Rev. 4 AU-6, IR-6, IR-8
References: CIS CSC 19 ; COBIT 5 DSS03.04 ; ISA 62443-2-1:2009 4.3.4.5.2 ; ISO/IEC 27001:2013 A.16.1.2, Clause 7.4, Clause 16.1.2 ; NIST SP 800-53 Rev. 4 CA-2, CA-7, CP-2, IR-4, IR-8, PE-6, RA-5, SI-4
References: CIS CSC 19 ; COBIT 5 DSS03.04 ; ISA 62443-2-1:2009 4.3.4.5.5 ; ISO/IEC 27001:2013 Clause 7.4 ; NIST SP 800-53 Rev. 4 CP-2, IR-4, IR-8
References: CIS CSC 19 ; COBIT 5 BAI08.04 ; ISO/IEC 27001:2013 A.6.1.4 ; NIST SP 800-53 Rev. 4 SI-5, PM-15
3. Analysis (RS.AN)
References: CIS CSC 4, 6, 8, 19 ; COBIT 5 DSS02.04, DSS02.07 ; ISA 62443-2-1:2009 4.3.4.5.6, 4.3.4.5.7, 4.3.4.5.8 ; ISA 62443-3-3:2013 SR 6.1 ; ISO/IEC 27001:2013 A.12.4.1, A.12.4.3, A.16.1.5 ; NIST SP 800-53 Rev. 4 AU-6, CA-7, IR-4, IR-5, PE-6, SI-4
References: COBIT 5 DSS02.02 ; ISA 62443-2-1:2009 4.3.4.5.6, 4.3.4.5.7, 4.3.4.5.8 ; ISO/IEC 27001:2013 A.16.1.4, A.16.1.6 ; NIST SP 800-53 Rev. 4 CP-2, IR-4
References: COBIT 5 APO12.06, DSS03.02, DSS05.07 ; ISA 62443-3-3:2013 SR 2.8, SR 2.9, SR 2.10, SR 2.11, SR 2.12, SR 3.9, SR 6.1 ; ISO/IEC 27001:2013 A.16.1.7 ; NIST SP 800-53 Rev. 4 AU-7, IR-4
References: CIS CSC 19 ; COBIT 5 DSS02.02 ; ISA 62443-2-1:2009 4.3.4.5.6 ; ISO/IEC 27001:2013 A.16.1.4 ; NIST SP 800-53 Rev. 4 CP-2, IR-4, IR-5, IR-8
References: CIS CSC 4, 19 ; COBIT 5 EDM03.02, DSS05.07 ; NIST SP 800-53 Rev. 4 SI-5, PM-15
4. Mitigation (RS.MI)
References: CIS CSC 19 ; COBIT 5 APO12.06 ; ISA 62443-2-1:2009 4.3.4.5.6 ; ISA 62443-3-3:2013 SR 5.1, SR 5.2, SR 5.4 ; ISO/IEC 27001:2013 A.12.2.1, A.16.1.5 ; NIST SP 800-53 Rev. 4 IR-4
References: CIS CSC 4, 19 ; COBIT 5 APO12.06 ; ISA 62443-2-1:2009 4.3.4.5.6, 4.3.4.5.10 ; ISO/IEC 27001:2013 A.12.2.1, A.16.1.5 ; NIST SP 800-53 Rev. 4 IR-4
References: CIS CSC 4 ; COBIT 5 APO12.06 ; ISO/IEC 27001:2013 A.12.6.1 ; NIST SP 800-53 Rev. 4 CA-7, RA-3, RA-5
5. Improvements (RS.IM)
References: COBIT 5 BAI01.13 ; ISA 62443-2-1:2009 4.3.4.5.10, 4.4.3.4 ; ISO/IEC 27001:2013 A.16.1.6, Clause 10 ; NIST SP 800-53 Rev. 4 CP-2, IR-4, IR-8
References: COBIT 5 BAI01.13, DSS04.08 ; ISO/IEC 27001:2013 A.16.1.6, Clause 10 ; NIST SP 800-53 Rev. 4 CP-2, IR-4, IR-8
5. RECOVER (RC)
1. Recovery Planning (RC.RP)
References: CIS CSC 10 ; COBIT 5 APO12.06, DSS02.05, DSS03.04 ; ISO/IEC 27001:2013 A.16.1.5 ; NIST SP 800-53 Rev. 4 CP-10, IR-4, IR-8
2. Improvements (RC.IM)
References: COBIT 5 APO12.06, BAI05.07, DSS04.08 ; ISA 62443-2-1:2009 4.4.3.4 ; ISO/IEC 27001:2013 A.16.1.6, Clause 10 ; NIST SP 800-53 Rev. 4 CP-2, IR-4, IR-8
References: COBIT 5 APO12.06, BAI07.08 ; ISO/IEC 27001:2013 A.16.1.6, Clause 10 ; NIST SP 800-53 Rev. 4 CP-2, IR-4, IR-8
3. Communications (RC.CO)
References: COBIT 5 EDM03.02 ; ISO/IEC 27001:2013 A.6.1.4, Clause 7.4
References: COBIT 5 MEA03.02 ; ISO/IEC 27001:2013 Clause 7.4
References: COBIT 5 APO12.06 ; ISO/IEC 27001:2013 Clause 7.4 ; NIST SP 800-53 Rev. 4 CP-2, IR-4
Attribution / Pas d'utilisation commerciale
CC-BY-NC