NIST CSF: PR.IP-5 Subcategory

From NIST's Cyber Security Framework (version 1):

Policy and regulations regarding the physical operating environment for organizational assets are met

Cyber Threat Graph Context

Explore how this control relates to the wider threat graph

CSF Mapped to SP800-53 Controls

Generated from NIST's SP800-53/CSF Crosswalk mappings.

Node
PE-13: Fire Protection
PE-14: Environmental Controls
PE-15: Water Damage Protection
PE-10: Emergency Shutoff
PE-18: Location of System Components
PE-12: Emergency Lighting

Related ISO 27001 Controls

Annex A controls from ISO 27001 (2013) which are related to this CSF subcategory, taken from mappings by NIST and additional data from Ofgem.

  • Cabling security (11.2.3)
    ISO 27001:2013
  • Protecting against external and environmental threats (11.1.4)
    ISO 27001:2013
  • Equipment siting and protection (11.2.1)
    ISO 27001:2013
  • Supporting utilities (11.2.2)
    ISO 27001:2013

Related ISA/IEC 62443 Controls

Clauses and controls from IEC 62443 (62443-2-1 and 62443-3-3) which are related to this CSF subcategory, taken from mappings by NIST and additional data from Ofgem.

  • Establish complimentary physical and cyber security policies (4.3.3.3.1)
    ISA/IEC 62443-2-1:2009
  • Establish physical security perimeters (4.3.3.3.2)
    ISA/IEC 62443-2-1:2009
  • Require employees to follow security procedures (4.3.3.3.5)
    ISA/IEC 62443-2-1:2009
  • Provide entry controls (4.3.3.3.3)
    ISA/IEC 62443-2-1:2009
  • Protect connections (4.3.3.3.6)
    ISA/IEC 62443-2-1:2009

CSF Mapped to the NCSC CAF

Cyber Assessment Framework mappings generated from UK Cabinet Office data.

Control ID Name Description
A3.a Asset Management Everything required to deliver, maintain or support networks and information systems necessary for the operation of essential functions is determined and understood. This includes data, people and systems, as well as any supporting infrastructure (such as power or cooling).
B3.b Data in Transit You have protected the transit of data important to the operation of the essential function. This includes the transfer of data to third parties.
B3.c Stored Data You have protected stored data important to the operation of the essential function.
B5.b Design for Resilience You design the network and information systems supporting your essential function to be resilient to cyber security incidents. Systems are appropriately segregated and resource limitations are mitigated.