Open cota44ur opened 1 week ago
Is this used somewhere elase in the CISO Assistant ? Can't You modify existing template to have it ?
Hi, It is not used in the CISO Assistant UI for the moment. It would be interesting et relevant to add security control types in the following screen :
Regards
@cota44ur thanks for the suggestion. We are very keen to introduce the Cyber security concepts directly in the model. Control type can be seen as a subset of this attribute. For the CIA or other dimensions, we are envisioning a generic system of tags that would allow everyone to use custom-defined tags.
Hi Eric, Thank you for your proposition that fits my needs. Go on ! Etienne C.
Hi,
Accordingly to ISO27002:2022, would it be possible in CISO Assistant to add the following attribute to make security controls easier to categorise: -Control type (preventive, detective, corrective) -Information security properties (confidentiality, integrity, availability) -Cyber security concepts (identify, protect, detect, respond, recover)
Thank you, Kind Regards Eteinne