Skip to content
Home / Function (NIST CSF 2.0) / ID - Identify / RA - Risks Asst

Controls

NIST CSF Function ID.RA-05

Controls — technical, administrative, and physical measures to protect assets — are highly dependent on normative documents to ensure consistency, effectiveness, and compliance. Standards like ISO/IEC 27001 Annex A provide a comprehensive catalog of security controls, while NIST SP 800-53 offers detailed control families for federal information systems. Regulators and agencies such as CISA in the U.S. or ENISA in the EU often reference these frameworks when defining minimum security requirements for organizations. By following these normative documents, organizations can implement proven safeguards, reduce vulnerabilities, and demonstrate adherence to legal and industry expectations, thereby strengthening their overall security posture.

CIS Controls Internet of Things Companion Guide

The CIS Controls Internet of Things (IoT) Companion Guide provides detailed guidance on how to apply the cybersecurity best practices of the CIS Controls, particularly Version 8.1, to IoT environments.… Read More »CIS Controls Internet of Things Companion Guide

NIST IR 8374 Rev. 1 Ransomware Risk Management: A Cybersecurity Framework 2.0 Community Profile

The “Ransomware Risk Management: A Cybersecurity Framework 2.0 Community Profile” is a NIST publication that provides organizations with a practical guide to managing ransomware risks using the updated NIST Cybersecurity… Read More »NIST IR 8374 Rev. 1 Ransomware Risk Management: A Cybersecurity Framework 2.0 Community Profile

COMPLIANCE FORGE Secure Controls Framework (SCF) Control Mapping

The ComplianceForge Secure Controls Framework (SCF) Control Mapping is a comprehensive resource designed to help organizations efficiently align their cybersecurity and privacy controls with multiple regulatory, statutory, and contractual requirements.… Read More »COMPLIANCE FORGE Secure Controls Framework (SCF) Control Mapping