Direct links from the subject.
| Property | Value |
|---|---|
|
The subject is an instance of a class. |
|
|
The subject is an instance of a class. |
An idea or notion; a unit of thought. |
|
A human-readable name for the subject. |
ID.IM-03.3: The organisation shall identify improvements derived from the monitoring, measure- ments, assessments, and lessons learned and consequently translate this into improved processes / procedures / technologies to enhance its cyber resilience (continuous improvement). |
|
ID.IM-03.3 |
|
|
http://cyfun.data.gift/data/loc_CyFun2025_Booklet_ESSENTIAL_E_p75 |
|
|
http://cyfun.data.gift/data/loc_CyFun2025_Booklet_IMPORTANT_E_p55 |
|
|
Relates a concept to a concept that is more general in meaning. |
|
|
A general note, for any purpose. |
The goal of this control is to enhance the organisation’s cyber resilience by identifying improvements from monitoring, measurements, assessments, and lessons learned, and translating them into updated processes, procedures, or technologies. In OperationalTechnology(OT) environments, where system reliability and safety are tightly linked to cyber performance, continuous improvement helps maintain operational integrity and adapt to evolving threats. To achieve this goal, the organisation should: - Use Cyber Resilience Metrics Metrics should be used to assess the organisation’s ability to withstand and recover from cyber incidents, supporting informed risk management and decision-making. - Apply Measures of Effectiveness (MOEs) MOEs should be used to evaluate and compare the effectiveness of different cyber resilience strategies and guide investment or design decisions. - Implement Objective-Driven Metrics Metrics should cover preparedness, operational continuity during attacks, damage limitation, and recovery and restoration capabilities. - Conduct Independent Assessments Independent teams should be engaged to perform assessments and provide objective insights into areas for improvement. - Use Structured Scoring Systems ScoringmethodologiessuchasMITRE’sSSM-CR(SituatedScoringMethodologyforCyberResiliency)should be considered to support structured evaluation and prioritisation of improvements. - Ensure Conformance and Compliance All improvements should align with internal governance requirements and comply with applicable laws, regulations, and industry standards. |
|
A general note, for any purpose. |
The goal of this control is to enhance the organisation’s cyber resilience by identifying improvements from monitoring, measurements, assessments, and lessons learned, and translating them into updated processes, procedures, or technologies. In OperationalTechnology(OT) environments, where system reliability and safety are tightly linked to cyber performance, continuous improvement helps maintain operational integrity and adapt to evolving threats. To achieve this goal, the organisation should: - Use Cyber Resilience Metrics Metrics should be used to assess the organisation’s ability to withstand and recover from cyber incidents, supporting informed risk management and decision-making. - Apply Measures of Effectiveness (MOEs) MOEs should be used to evaluate and compare the effectiveness of different cyber resilience strategies and guide investment or design decisions. - Implement Objective-Driven Metrics Metrics should cover preparedness, operational continuity during attacks, damage limitation, and recovery and restoration capabilities. - Conduct Independent Assessments Independent teams should be engaged to perform assessments and provide objective insights into areas for improvement. - Use Structured Scoring Systems ScoringmethodologiessuchasMITRE’sSSM-CR(SituatedScoringMethodologyforCyberResiliency)should be considered to support structured evaluation and prioritisation of improvements. - Ensure Conformance and Compliance All improvements should align with internal governance requirements and comply with applicable laws, regulations, and industry standards. |
|
A general note, for any purpose. |
The goal of this control is to enhance the organisation’s cyber resilience by identifying improvements from monitoring, measurements, assessments, and lessons learned, and translating them into updated processes, procedures, or technologies. In OperationalTechnology(OT) environments, where system reliability and safety are tightly linked to cyber performance, continuous improvement helps maintain operational integrity and adapt to evolving threats. To achieve this goal, the organisation should: • Use Cyber Resilience Metrics Metrics should be used to assess the organisation’s ability to withstand and recover from cyber incidents, supporting informed risk management and decision-making. • Apply Measures of Effectiveness (MOEs) MOEs should be used to evaluate and compare the effectiveness of different cyber resilience strategies and guide investment or design decisions. • Implement Objective-Driven Metrics Metrics should cover preparedness, operational continuity during attacks, damage limitation, and recovery and restoration capabilities. • Conduct Independent Assessments Independent teams should be engaged to perform assessments and provide objective insights into areas for improvement. • Use Structured Scoring Systems ScoringmethodologiessuchasMITRE’sSSM-CR(SituatedScoringMethodologyforCyberResiliency)should be considered to support structured evaluation and prioritisation of improvements. • Ensure Conformance and Compliance All improvements should align with internal governance requirements and comply with applicable laws, regulations, and industry standards. |
|
A general note, for any purpose. |
<div><p>The goal of this control is to enhance the organisation’s cyber resilience by identifying improvements from monitoring, measurements, assessments, and lessons learned, and translating them into updated processes, procedures, or technologies. In OperationalTechnology(OT) environments, where system reliability and safety are tightly linked to cyber performance, continuous improvement helps maintain operational integrity and adapt to evolving threats. To achieve this goal, the organisation should:</p><ul><li>Use Cyber Resilience Metrics Metrics should be used to assess the organisation’s ability to withstand and recover from cyber incidents, supporting informed risk management and decision-making.</li><li>Apply Measures of Effectiveness (MOEs) MOEs should be used to evaluate and compare the effectiveness of different cyber resilience strategies and guide investment or design decisions.</li><li>Implement Objective-Driven Metrics Metrics should cover preparedness, operational continuity during attacks, damage limitation, and recovery and restoration capabilities.</li><li>Conduct Independent Assessments Independent teams should be engaged to perform assessments and provide objective insights into areas for improvement.</li><li>Use Structured Scoring Systems ScoringmethodologiessuchasMITRE’sSSM-CR(SituatedScoringMethodologyforCyberResiliency)should be considered to support structured evaluation and prioritisation of improvements.</li><li>Ensure Conformance and Compliance All improvements should align with internal governance requirements and comply with applicable laws, regulations, and industry standards.</li></ul></div> |
|
A notation, also known as classification code, is a string of characters such as "T58.5" or "303.4833" used to uniquely identify a concept within the scope of a given concept scheme. |
ID.IM-03.3 |
|
skos:prefLabel, skos:altLabel and skos:hiddenLabel are pairwise disjoint properties. |
Continuous improvement from assessments |
|
A resource has no more than one value of skos:prefLabel per language tag, and no more than one value of skos:prefLabel without language tag. |
The organisation shall identify improvements derived from the monitoring, measure- ments, assessments, and lessons learned and consequently translate this into improved processes / procedures / technologies to enhance its cyber resilience (continuous improvement). |
|
Relates a resource (for example a concept) to a concept scheme in which it is included. |
|
|
Relates a resource (for example a concept) to a concept scheme in which it is included. |
http://cyfun.data.gift/data/CyFun2025_delta_BASIC_to_IMPORTANT |
|
Relates a resource (for example a concept) to a concept scheme in which it is included. |
|
|
Relates a resource (for example a concept) to a concept scheme in which it is included. |
|
|
The number of triples associated with the subject. |
19 |
|
Specifies the dataset the subject is part of. |
Resultaten 1 - 21 of 21
Inverse links to the subject.
| Property | Subject |
|---|---|
|
Relates a concept to a concept that is more specific in meaning. |
Resultaten 1 - 1 of 1