Managing an Enterprise Cybersecurity Program

Donaldson, Scott E.; Siegel, Stanley G.; Williams, Charles E.; Aslam, Abdul

doi:10.1007/978-1-4842-3258-3_14

Cited by 1 publication

(2 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The functions are subsequently subdivided into 29 capability domains. These represent the cybersecurity functional areas and operational cyber technologies and processes (Donaldson et al , 2018) with which a cybersecurity architecture of an organisation can be built (Schoenfield, 2015). The 29 cybersecurity capability domains are further broken down into 140 capabilities that essentially represent a list of what should be achieved (required results) in the focus areas to maintain the desired cybersecurity resilience level.…”

Section: Discussion Of the Frameworkmentioning

confidence: 99%

“…Finally, the 140 cybersecurity capabilities can be realised by implementing any number of a set of cybersecurity controls or practices (operational cyber technologies and processes and procedures) that can be adapted from, for example, ISA/IEC 62443, NIST Special Publications 800–53, ISO/IEC 27002, COBIT and any number of other recommended security controls frameworks, guidelines and standards. In other words, no universal set of cybersecurity – preventative, detective, forensic and audit (Donaldson et al , 2018) – controls and/or practices is possible.…”

Section: Discussion Of the Frameworkmentioning

confidence: 99%

See 1 more Smart Citation

Cybersecurity capabilities for critical infrastructure resilience

Malatji

Solms

2021

ICS

View full text Add to dashboard Cite

Purpose For many innovative organisations, Industry 4.0 paves the way for significant operational efficiencies, quality of goods and services and cost reductions. One of the ways to realise these benefits is to embark on digital transformation initiatives that may be summed up as the intelligent interconnectivity of people, processes, data and cyber-connected things. Sadly, this interconnectivity between the enterprise information technology (IT) and industrial control systems (ICS) environment introduces new attack surfaces for critical infrastructure (CI) operators. As a result of the ICS cybersecurity risk introduced by the interconnectivity between the enterprise IT and ICS networks, the purpose of this study is to identify the cybersecurity capabilities that CI operators must have to attain good cybersecurity resilience. Design/methodology/approach A scoping literature review of best practice international CI protection frameworks, standards and guidelines were conducted. Similar cybersecurity practices from these frameworks, standards and guidelines were grouped together under a corresponding National Institute of Standards and Technology (NIST) cybersecurity framework (CF) practice. Practices that could not be categorised under any of the existing NIST CF practices were considered new insights, and therefore, additions. Findings A CI cybersecurity capability framework comprising 29 capability domains (cybersecurity focus areas) was developed as an adaptation of the NIST CF with an added dimension. This added dimension emphasises cloud computing and internet of things (IoT) security. Each of the 29 cybersecurity capability domains is executed through various capabilities (cybersecurity processes and procedures). The study found that each cybersecurity capability can further be operationalised by a set of cybersecurity controls derived from various frameworks, standards and guidelines, such as COBIT®, CIS®, ISA/IEC 62443, ISO/IEC 27002 and NIST Special Publication 800-53. Practical implications CI sectors are immediately able to adopt the CI cybersecurity capability framework to evaluate their levels of resilience against cyber-attacks, given new attack surfaces introduced by the interconnectivity of cyber-connected things between the enterprise and ICS levels. Originality/value The authors present an added dimension to the NIST framework for CI cyber protection. In addition to emphasising cryptography, IoT and cloud computing security aspects, this added dimension highlights the need for an integrated approach to CI cybersecurity resilience instead of a piecemeal approach.

show abstract

Section: Discussion Of the Frameworkmentioning

confidence: 99%

Section: Discussion Of the Frameworkmentioning

confidence: 99%