This standard specifies a framework for further vertical information security or cybersecurity control sets. It contains a common structure, common terms and definitions, and a common set of controls including control objectives. This standard shall be applied by any TC/SC/PC within CEN/CENELEC when developing their own vertical set of information security controls contain their sector-specific control requirements.
The main purpose of this standard is the harmonization of vertical control sets including the easing of comparision between different sectors.
This standard will not address management system standard topics.
This standard will not contain any specific control requirements itself.
Registration number (WIID)
74065
Scope
This standard specifies a framework for further vertical information security or cybersecurity control sets. It contains a common structure, common terms and definitions, and a common set of controls including control objectives. This standard shall be applied by any TC/SC/PC within CEN/CENELEC when developing their own vertical set of information security controls contain their sector-specific control requirements.
The main purpose of this standard is the harmonization of vertical control sets including the easing of comparision between different sectors.
This standard will not address management system standard topics.
This standard will not contain any specific control requirements itself.
