Skip to content
    Home / Sector

    Cross-Sector

    A wide range of documents provides universally applicable guidance and requirements for organizations across industries. These include laws and regulations like the General Data Protection Regulation and NIS2 Directive, standards such as ISO/IEC 27001, frameworks like the NIST Cybersecurity Framework, practical guidelines from authorities such as European Union Agency for Cybersecurity, contractual obligations, mapping documents reconciling multiple issuers, and tools—online or downloadable—that help operationalize these requirements. Their broad applicability across sectors ensures organizations can implement consistent, auditable cybersecurity practices that meet both legal obligations and industry-agnostic best practices.

    NIST IR 8286 Integrating Cybersecurity and Enterprise Risk Management (ERM)

    NIST IR 8286 Rev. 1, Integrating Cybersecurity and Enterprise Risk Management (ERM), provides a strategic framework for bridging the gap between technical security operations and high-level business decision-making. It emphasizes… Read More »NIST IR 8286 Integrating Cybersecurity and Enterprise Risk Management (ERM)

    NIST IR 8596 Cybersecurity Framework Profile for Artificial Intelligence (Cyber AI Profile): NIST Community Profile

    The NIST Cyber AI Profile offers a structured approach to integrating AI into cybersecurity operations. It provides guidance on leveraging AI for threat detection, risk assessment, and automated response while… Read More »NIST IR 8596 Cybersecurity Framework Profile for Artificial Intelligence (Cyber AI Profile): NIST Community Profile

    ETSI EN 304 223: Securing Artificial Intelligence (SAI) – Baseline Cyber Security Requirements for AI Models and Systems

    ETSI EN 304 223 is a landmark European standard, published in early 2026, that establishes the first globally applicable baseline for securing artificial intelligence models and systems throughout their entire… Read More »ETSI EN 304 223: Securing Artificial Intelligence (SAI) – Baseline Cyber Security Requirements for AI Models and Systems

    NIST IR 8286A Identifying and Estimating Cybersecurity Risk for Enterprise Risk Management

    NIST IR 8286A Rev. 1, Identifying and Estimating Cybersecurity Risk for Enterprise Risk Management, serves as a specialized companion to the main framework by providing deep-dive methodologies for the initial… Read More »NIST IR 8286A Identifying and Estimating Cybersecurity Risk for Enterprise Risk Management