This website uses cookies.
We use so-called cookies to operate our website. Cookies are files used to customize the content of a website, to measure its functionality and generally to ensure your maximum satisfaction.

necessary preferential statistical marketing unclassified Enable selected Enable all

IT - SECURITY

FORUM

HOME

Norms

ISO/IEC 27006:2015/Amd 1:2020

Information technology — Security techniques — Requirements for bodies providing audit and certification of information security management systems — Amendment 1

Source: ISO

2 / 9

More information, which may be usefull to you, may be found after login at it-portal.sk

Actual incidents

CheckPoint Research

show link

CERT-EU Threat intelligence

show link

show all

What is what in IT

NIS2 - Who falls within the framework

▪ Subject - private or public organization
▪ if at the same time
▪ provides at least one service listed in the annexes of the directive and at the same time
▪... more...

Physical and object security

is a system of measures to protect classified information from unauthorized persons and from unauthorized manipulation in objects and protected spaces.

show all

Interesting

85% of organizations had at least one ransomware attack in the past year

Source: Veeam

Atlassian releases critical software patches

Atlassian vydal softvérové opravy na riešenie štyroch kritických chýb vo svojom softvéri, ktoré by v prípade úspešného zneužitia mohli viesť k vzdialenému spusteniu kódu.

show all

Recomendations

377

Incident Management

Implement incident reporting from the supplier side.

Source: it.portal

Monitoring and Detection

Define and set up alerts

Source: it.portal

show all

Institutions

GOV CERT SK

Špecializované centrum určené primárne na zvýšenie kybernetickej bezpečnosti siete GOVNET.show link

NCC-NO

Norwegian National Security Authorityshow link

show all

Legislative

99/2019 Sb.

ZÁKON ze dne 20. března 2019 o přístupnosti internetových stránek a mobilních aplikací a o změně zákona č. 365/2000 Sb., o informačních systémech veřejné správy a o změně... more... show link

Source: e-sbirka

Regulation (EU) 2019/881 of the European Parliament and of the Council

Regulation (EU) 2019/881 of the European Parliament and of the Council of 17 April 2019 on ENISA (the European Union Agency for Cybersecurity) and on information and comm... more... show link

Source: Eur-Lex

show all

Norms

ISO/IEC TS 27008:2019

Information technology — Security techniques — Guidelines for the assessment of information security controls

Source: ISO

ISO/IEC 27011:2016/Cor 1:2018

Information technology — Security techniques — Code of practice for Information security controls based on ISO/IEC 27002 for telecommunications organizations — Technical ... more...