Take the ISO 27001 course exam and get the EU GDPR course exam for free
LIMITED-TIME OFFER – VALID UNTIL SEPTEMBER 30, 2021

Expert Advice Community

Guest

ISO 27001, NIST CSF and NERC CIP

  Quote
Guest
Guest user Created:   May 09, 2018 Last commented:   May 09, 2018

ISO 27001, NIST CSF and NERC CIP

I saw someone gave the correlation between NIST Cybersecurity framework core and NERC CIP 02-09 in the picture attached .
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal May 09, 2018
I am thinking whether I can approach the Cybersecurity in a risk management framework , from risk management strategy to identify and access the risk , build Cybersecurity program and security assurance architecture , mitigate the risk from Cybersecurity plan with security control in ISO 27001 Annex A against the control category in NIST CSF which comply with NERC CIP 02-09.

Answer: We're not experts in NERC CIP, but it seems that it is possible to combine these three frameworks. The following material will give you an overview on how to integrate ISO 27001 and NIST CSF:
- Which one to go with – Cybersecurity Framework or ISO 27001? https://advisera.com/27001academy/blog/2014/02/24/which-one-to-go-with-cybersecurity-framework-or-iso-27001/
- How to implement the NIST Cyber Security Framework using ISO 27001 https://info.advisera.com/27001academy/free-download/how-to-implement-nist-cyber-security-framework-using-iso-27001

and since the correlation between NIST CSF and NERC CIP is already mapped, the integration between these three would follow the same logic.
Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

May 09, 2018

May 09, 2018

Suggested Topics

Guest user Created:   Sep 23, 2021 ISO 27001 & 22301
Replies: 3
0 0

ISO 27001 implementation

Rena Created:   Sep 15, 2021 ISO 27001 & 22301
Replies: 1
0 0

Conformio ISO Documentation

Guest user Created:   Sep 15, 2021 ISO 27001 & 22301
Replies: 1
0 0

ISO27001 Implementation