Asset Management is a core principle of critical infrastructure cyber security

Asset Management is a core principle of critical infrastructure cyber security

By Rhys Davies

on

The UK’s National Cyber Security Centre has published version 3.0 of its Cyber Assessment Framework.

The Cyber Assessment Framework is applicable to organizations operating Critical National Infrastructure (e.g. energy supply, water supply, transportation, health and telecommunications). This framework contains 14 areas of compliance, including Asset Management. Guidance includes adherence to ISO 55001 as a recommended management system. The NCSC states: “Asset management will play a key role as you cannot effectively manage risks without understanding what assets are part of the essential functions”. Learn more about the CAF here.