This chapter covers industry-accepted information security frameworks, including NIST frameworks, COBIT, and CIS Controls, which help organizations understand current cyber risks, identify missing security controls that protect from cyber threats, and prioritize mitigative activities. This chapter also discusses select national-level security requirements and frameworks in Qatar, Singapore, Saudi Arabia, Turkey, and India, which organizations in those countries need to comply with.
3. Information Security Frameworks
Get IT Security Controls: A Guide to Corporate Standards and Frameworks now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.