|
ID.RA-01.6: Vulnerabilities shall be identified and managed in all relevant assets, including soft- ware, network and system architectures, and facilities.
|
http://cyfun.data.gift/data/requirement_ID_RA_01_6
|
19 |
|
ID.RA-01: Vulnerabilities in assets are identified, validated, and recorded
|
http://cyfun.data.gift/data/nist_subcategory_ID_RA_01
|
5 |
|
ID.RA-01: Vulnerabilities in assets are identified, validated, and recorded
|
http://cyfun.data.gift/data/subcategory_ID.RA-01
|
27 |
|
ID.RA-02.1: A threat and vulnerability awareness program that includes a cross-organisation information-sharing capability shall be implemented.
|
http://cyfun.data.gift/data/requirement_ID_RA_02_1
|
19 |
|
ID.RA-02.2: Automated mechanisms shall be implemented to disseminate security alerts and advisories to relevant organisation stakeholders.
|
http://cyfun.data.gift/data/requirement_ID_RA_02_2
|
17 |
|
ID.RA-02: Cyber threat intelligence is received from information sharing forums and sources
|
http://cyfun.data.gift/data/nist_subcategory_ID_RA_02
|
5 |
|
ID.RA-02: Cyber threat intelligence is received from information sharing forums and sources
|
http://cyfun.data.gift/data/subcategory_ID.RA-02
|
17 |
|
ID.RA-03.1: Threats shall be identified and assessed in relation to all relevant assets, including software, network and system architectures, and facilities.
|
http://cyfun.data.gift/data/requirement_ID_RA_03_1
|
19 |
|
ID.RA-03: Internal and external threats to the organization are identified and recorded
|
http://cyfun.data.gift/data/nist_subcategory_ID_RA_03
|
5 |
|
ID.RA-03: Internal and external threats to the organization are identified and recorded
|
http://cyfun.data.gift/data/subcategory_ID.RA-03
|
15 |
|
ID.RA-05.1: The organisation shall conduct risk assessments in which risk is determined by threats, vulnerabilities and the impact on business processes and assets.
|
http://cyfun.data.gift/data/requirement_ID_RA_05_1
|
21 |
|
ID.RA-05.2: The organisation shall conduct and document risk assessments in which risk is determined by threats, vulnerabilities, impact on business processes and assets, and likelihood of their occurrence.
|
http://cyfun.data.gift/data/requirement_ID_RA_05_2
|
22 |