23
IT-Grundschutz im Rest der Welt: Cybersecurity Framework und NIST SP 800-53 A. Koderman (SerNet)

IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

  • Upload
    others

  • View
    7

  • Download
    0

Embed Size (px)

Citation preview

Page 1: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

IT-Grundschutzim Rest der Welt:

Cybersecurity Framework und NIST SP 800-53

A. Koderman (SerNet)

Page 2: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

IT-Grundschutz Kompendium

CON.5:

Page 3: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

IT-GrundschutzKompendium

Umsetzungs-hinweise:

Page 4: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

IT-Grundschutz Kompendium

SYS.3.2.1:

Page 5: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

IS-Management

?

Secure Systems

Page 6: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

NIST Cybersecurity Framework

Page 7: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

NIST Cybersecurity Framework

Page 8: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

NIST Cybersecurity Framework

Page 9: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

Standard-Korrelationen

Page 10: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

NIST 800-53r4

Control Families

RMF

Page 11: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

NIST 800-53r4 Annex F: Controls

Page 12: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

NIST 800-53r4 Baselines

Page 13: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

NIST 800-53r4 Baselines

Page 14: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

NIST 800-53r4: Assessments?

Page 15: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

NIST 800-53r4a: Assessments

Page 16: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

Vgl.: IT-Grundschutz-Kompendium Checklisten

Page 17: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

DISA STIGs

Page 18: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

DISA STIGs

Page 19: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

DISA STIGs

Page 20: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

SCAP OVAL

Page 21: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

SCAP OVAL

Page 22: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

SCAP OVAL

Page 23: IT-Grundschutz im Rest der Welt: Cybersecurity …...Source: Framework for Improving Critical Infrastructure Cybersecurity NIST, USA, 2014, Table 1 Questions What is Executive Order

Standard-Korrelationen