NIST CSF: ID.GV-1 Subcategory

Organizational cybersecurity policy is established and communicated

Cyber Threat Graph Context

Explore how this control relates to the wider threat graph

Annex A controls from ISO 27001 (2013) which are related to this CSF subcategory, taken from mappings by NIST and additional data from Ofgem.

Cyber Assessment Framework mappings generated from UK Cabinet Office data.

Search:

Control ID	Name	Description
B1.b	Policy and Process Implementation	You have successfully implemented your security policies and processes and can demonstrate the security benefits achieved.
A1.a	Board Direction	You have effective organisational security management led at board level and articulated clearly in corresponding policies.
B1.a	Policy and Process Development	You have developed and continue to improve a set of cyber security and resilience policies and processes that manage and mitigate the risk of adverse impact on the essential function.

Showing 1 to 3 of 3 entries