- [[Use Cases]] ## CIS Critical Security Controls The CIS Critical Security Controls (CIS Controls) are a prioritized set of Safeguards to mitigate the most prevalent cyber-attacks against systems and networks. They are mapped to and referenced by multiple legal, regulatory, and policy frameworks. [https://www.cisecurity.org/controls/v8](https://www.cisecurity.org/controls/v8) ## ISO27000 ISO/IEC 27001 is the world’s best-known standard for information security management systems (ISMS) and their requirements. [https://www.iso.org/isoiec-27001-information-security.html](https://www.iso.org/isoiec-27001-information-security.html) ## NIST Cybersecurity Framework The framework provides a high level taxonomy of cybersecurity outcomes and a methodology to assess and manage those outcomes. https://www.nist.gov/cyberframework ## CE Cyber Essentials (CE) is a United Kingdom certification scheme designed to show an organisation has a minimum level of protection in cyber security through annual assessments to maintain certification. ## TISAX Trusted Information Security Assessment Exchange (TISAX) ist ein Prüf- und Austauschmechanismus von Prüfergebnissen nach dem branchenspezifischen Standard VDA-ISA. [https://www.enx.com/de-de/tisax/](https://www.enx.com/de-de/tisax/) ## NIS Europäische Richtlinie für Netzwerk- und Informationssysteme (NIS) [https://www.bsi.bund.de/DE/Das-BSI/Auftrag/Gesetze-und-Verordnungen/NIS-Richtlinie/nis-richtlinie_node.html](https://www.bsi.bund.de/DE/Das-BSI/Auftrag/Gesetze-und-Verordnungen/NIS-Richtlinie/nis-richtlinie_node.html)