Direct links from the subject.
| Property | Value |
|---|---|
|
The subject is an instance of a class. |
|
|
The subject is an instance of a class. |
An idea or notion; a unit of thought. |
|
A human-readable name for the subject. |
GV.RM-05.1: To support the high-level risk management vision, the organisation shall establish clear lines of communication for cybersecurity risks, including those arising from suppliers and third parties. |
|
GV.RM-05.1 |
|
|
http://cyfun.data.gift/data/loc_CyFun2025_Booklet_ESSENTIAL_E_p22 |
|
|
http://cyfun.data.gift/data/loc_CyFun2025_Booklet_IMPORTANT_E_p19 |
|
|
Relates a concept to a concept that is more general in meaning. |
|
|
A general note, for any purpose. |
The aim of this control is to ensure that cybersecurity and information security risk information is shared effectively across the organisation and with external parties. This control focus on operational and tactical communication is specific to cybersecurity risks and emphasises communication channels (e.g., reporting, escalation, coordination), including external risks from suppliers and third parties. Consider the following elements when implementing this control: - Define Communication Roles and Responsibilities Assign clear ownership for reporting, escalating, and responding to cybersecurity risks across departments and with third parties. - Establish Communication Channels Use structured channels such as email groups, ticketing systems, incident response platforms, orcollaboration tools (e.g. Teams, Slack) for timely risk communication. - Include Third Parties Integrate suppliers and partners into the communication process through contractual clauses, shared report- ing protocols, or joint incident response plans. - Document and Train Maintain a communication protocol or playbook and train relevant staff on how and when to report cyber- security risks. - Review and Improve Periodicallytest and reviewcommunication effectiveness through tabletop exercises orpost-incident reviews. This control supports the implementation of GV.RM-03.2 by ensuring that identified and documented risks are communicated to the right stakeholders, enabling timely response and coordination. GOVERN C BILITIES,AND |
|
A general note, for any purpose. |
<div><p>The aim of this control is to ensure that cybersecurity and information security risk information is shared effectively across the organisation and with external parties. This control focus on operational and tactical communication is specific to cybersecurity risks and emphasises communication channels (e.g., reporting, escalation, coordination), including external risks from suppliers and third parties. Consider the following elements when implementing this control:</p><ul><li>Define Communication Roles and Responsibilities Assign clear ownership for reporting, escalating, and responding to cybersecurity risks across departments and with third parties.</li><li>Establish Communication Channels Use structured channels such as email groups, ticketing systems, incident response platforms, orcollaboration tools (e.g. Teams, Slack) for timely risk communication.</li><li>Include Third Parties Integrate suppliers and partners into the communication process through contractual clauses, shared report- ing protocols, or joint incident response plans.</li><li>Document and Train Maintain a communication protocol or playbook and train relevant staff on how and when to report cyber- security risks.</li><li>Review and Improve Periodicallytest and reviewcommunication effectiveness through tabletop exercises orpost-incident reviews. This control supports the implementation of GV.RM-03.2 by ensuring that identified and documented risks are communicated to the right stakeholders, enabling timely response and coordination. GOVERN C BILITIES,AND</li></ul></div> |
|
A general note, for any purpose. |
The aim of this control is to ensure that cybersecurity and information security risk information is shared effectively across the organisation and with external parties. This control focus on operational and tactical communication is specific to cybersecurity risks and emphasises communication channels (e.g., reporting, escalation, coordination), including external risks from suppliers and third parties. Consider the following elements when implementing this control: • Define Communication Roles and Responsibilities Assign clear ownership for reporting, escalating, and responding to cybersecurity risks across departments and with third parties. • Establish Communication Channels Use structured channels such as email groups, ticketing systems, incident response platforms, orcollaboration tools (e.g. Teams, Slack) for timely risk communication. • Include Third Parties Integrate suppliers and partners into the communication process through contractual clauses, shared report- ing protocols, or joint incident response plans. • Document and Train Maintain a communication protocol or playbook and train relevant staff on how and when to report cyber- security risks. • Review and Improve Periodicallytest and reviewcommunication effectiveness through tabletop exercises orpost-incident reviews. This control supports the implementation of GV.RM-03.2 by ensuring that identified and documented risks are communicated to the right stakeholders, enabling timely response and coordination. GOVERN C BILITIES,AND |
|
A general note, for any purpose. |
The aim of this control is to ensure that cybersecurity and information security risk information is shared effectively across the organisation and with external parties. This control focus on operational and tactical communication is specific to cybersecurity risks and emphasises communication channels (e.g., reporting, escalation, coordination), including external risks from suppliers and third parties. Consider the following elements when implementing this control: - Define Communication Roles and Responsibilities Assign clear ownership for reporting, escalating, and responding to cybersecurity risks across departments and with third parties. - Establish Communication Channels Use structured channels such as email groups, ticketing systems, incident response platforms, orcollaboration tools (e.g. Teams, Slack) for timely risk communication. - Include Third Parties Integrate suppliers and partners into the communication process through contractual clauses, shared report- ing protocols, or joint incident response plans. - Document and Train Maintain a communication protocol or playbook and train relevant staff on how and when to report cyber- security risks. - Review and Improve Periodicallytest and reviewcommunication effectiveness through tabletop exercises orpost-incident reviews. This control supports the implementation of GV.RM-03.2 by ensuring that identified and documented risks are communicated to the right stakeholders, enabling timely response and coordination. GOVERN C BILITIES,AND |
|
A notation, also known as classification code, is a string of characters such as "T58.5" or "303.4833" used to uniquely identify a concept within the scope of a given concept scheme. |
GV.RM-05.1 |
|
skos:prefLabel, skos:altLabel and skos:hiddenLabel are pairwise disjoint properties. |
Risk communication channels |
|
A resource has no more than one value of skos:prefLabel per language tag, and no more than one value of skos:prefLabel without language tag. |
To support the high-level risk management vision, the organisation shall establish clear lines of communication for cybersecurity risks, including those arising from suppliers and third parties. |
|
Relates a resource (for example a concept) to a concept scheme in which it is included. |
|
|
Relates a resource (for example a concept) to a concept scheme in which it is included. |
http://cyfun.data.gift/data/CyFun2025_delta_BASIC_to_IMPORTANT |
|
Relates a resource (for example a concept) to a concept scheme in which it is included. |
|
|
Relates a resource (for example a concept) to a concept scheme in which it is included. |
|
|
The number of triples associated with the subject. |
19 |
|
Specifies the dataset the subject is part of. |
Resultaten 1 - 21 of 21
Inverse links to the subject.
| Property | Subject |
|---|---|
|
Relates a concept to a concept that is more specific in meaning. |
Resultaten 1 - 1 of 1