ESCO, The European Cyber Security Organisation (ECSO) ASBL is a fully self-financed non-for-profit organisation under the Belgian law, established in June 2016.
| # | Esco Id | Standard Scheme | Body | Country Industry | Reference | Swg | Sector Category | Usecase Applicable | Link | |
|---|---|---|---|---|---|---|---|---|---|---|
| 1 | 115 | ULD Datenschutz-Gütesiegel | Unabhängiges Landeszentrum für Datenschutz SchleswigHolstein | Germany (Schleswig-Holstein) | 3.1.8 | 2.1.1 Standards and schemes for generic IT products | Police | View | ||
| 2 | 114 | ULD Datenschutzaudit | Unabhängiges Landeszentrum für Datenschutz SchleswigHolstein | Germany (Schleswig-Holstein) | 5.1.20 | 2.3.1 Standards and schemes for generic organisations | https://www.datenschutzzentrum.de/audit/ | View | ||
| 3 | 113 | UL Cybersecurity Assurance | UL | USA Generic | 3.1.7 | 2.1.1 Standards and schemes for generic IT products | http://www.ul.com/cybersecurity/ | View | ||
| 4 | 112 | TüV Rheinland Cloud Security Certification | TüV Rheinland | International | 4.8 | 1.2 | 2.2 Standards and schemes for cloud service providers (SWG 1.2) | http://www.tuv.com/en/corporate/business_customers/information_security_cw/strategic_informati | View | |
| 5 | 111 | TL 9000 Quality Management System | QuEST Forum | International ICT vendors | 5.9.3 | 3.8 | 2.3.9 Standards and schemes for telecom, media and content (SWG 3.8) | http://www.tl9000.org/ | View | |
| 6 | 110 | The Guidelines on Cyber Security onboard Ships | BIMCO et al. | International Shipping | 5.4.3 | 3.3 | 2.3.4 Standards and schemes for transportation (road, rail, air, sea) (SWG 3.3) | http://www.srhmar.com/images/stories/pdf/Guidel ines_on_cyber_security_onboard_ships.pdf | View | |
| 7 | 109 | Strategic Principles for Securing the Internet of Things (IoT) | Department of Homeland Security | USA General | 5.14.7 | 2.3.14 Standards and schemes for IoT device vendors | https://www.dhs.gov/securingtheIoT | View | ||
| 8 | 108 | Software Improvement Group (SIG) Software Quality Model for Security | Software Improvement Group | The Netherlands General | 3.1.6 | 2.1.1 Standards and schemes for generic IT products | Police,Retail,smartgrid | https://www.sig.eu/insight/practical-model-ratingsoftware-security | View | |
| 9 | 107 | Shared Assessments Program | Shared Assessment | International Vendor management | 5.1.19 | 2.3.1 Standards and schemes for generic organisations | https://sharedassessments.org/about/ | View | ||
| 10 | 106 | Service Organisation Control (SOC) | AICPA | USA general | 5.1.18 | 2.3.1 Standards and schemes for generic organisations | http://www.aicpa.org/InterestAreas/FRC/Assuran%27sManagement.aspx | View | ||
| 11 | 105 | SAE J3061 (Cybersecurity Guidebook for Cyber-Physical Vehicle Systems) | SAE | International Vehicles | 5.4.2 | 3.3 | 2.3.4 Standards and schemes for transportation (road, rail, air, sea) (SWG 3.3) | http://webstore.ansi.org/RecordDetail.aspx?sku= SAE+J+3061-2016+(SAE+J3061-2016) | View | |
| 12 | 104 | RTCA DO-326A (Airworthiness Security Process Specification) | RTCA | International Aviation | 5.4.1 | 3.3 | 2.3.4 Standards and schemes for transportation (road, rail, air, sea) (SWG 3.3) | http://www.rtca.org/store_product.asp?prodid=1173 | View | |
| 13 | 103 | Référentiel Général de Sécurité (RGS) | ANSSI | France General | 5.10.4 | 2.3.10 Standards and schemes for critical infrastructures | https://www.ssi.gouv.fr/administration/reglementa tion/confiance-numerique/le-referentiel-generalde-securite-rgs/ | View | ||
| 14 | 102 | Program (UL 2900-1 / 2) | 2.1.1 Standards and schemes for generic IT products | View | ||||||
| 15 | 101 | PCI PTS HSM Security Requirements | PCI SSC | International HSMs used in the payment industry | 3.5.2 | 2.1.5 Standards and schemes for products used in the payment industry | Retail | https://www.pcisecuritystandards.org/ | View | |
| 16 | 100 | PCI PIN Transaction Security Point of Interaction security (PCI PTS POI) Requirements | PCI SSC | International Payment point of interaction devices | 3.5.4 | 2.1.5 Standards and schemes for products used in the payment industry | Retail | https://www.pcisecuritystandards.org/ | View | |
| 17 | 99 | PCI Payment Application Data Security Standard (PCI PA-DSS) | PCI SSC | International Payment applications | 3.5.3 | 2.1.5 Standards and schemes for products used in the payment industry | Retail | https://www.pcisecuritystandards.org/ | View | |
| 18 | 98 | PCI Data Security Standard | PCI SSC | International Card Payments | 5.13.1 | 2.3.13 Standards and schemes for the payment industry | https://www.pcisecuritystandards.org/ | View | ||
| 19 | 97 | OWASP Testing Guide | OWASP | International | 3.7.2 | 2.1.7 Standards and schemes for web applications | https://www.owasp.org/index.php/Category:OWA SP_Testing_Project | View | ||
| 20 | 96 | OWASP Software Assurance Maturity Model | OWASP | International | 5.11.5 | 2.3.11 Standards and schemes for general secure software development | https://www.owasp.org/index.php/OWASP_SAM M_Project | View | ||
| 21 | 95 | OWASP Internet of Things Project | OWASP | International General | 5.14.7 | 2.3.14 Standards and schemes for IoT device vendors | Police,Retail,smartgrid | https://www.owasp.org/index.php/OWASP_Interne t_of_Things_Project | View | |
| 22 | 94 | OWASP Application Security Verification Standard (including OWASP Top Ten) | OWASP | International | 3.7.1 | 2.1.7 Standards and schemes for web applications | Police,Retail,smartgrid | https://www.owasp.org/index.php/Top_10_2013 | View | |
| 23 | 93 | Open Trusted Technology Provider Standard (O-TTPS) | Open Group | International | 5.1.17 | 2.3.1 Standards and schemes for generic organisations | https://www2.opengroup.org/ogsys/catalog/c139 http://www.opengroup.org/certifications/o-ttps | View | ||
| 24 | 92 | Online Trust Alliance IoT Trust Framework | Online Trust Alliance | USA General | 5.14.5 | 2.3.14 Standards and schemes for IoT device vendors | https://otalliance.org/resources/iot-industryresources | View | ||
| 25 | 91 | NIST SP 800-82 (Guide to Industrial Control Systems (ICS) Security) | NIST | USA General ICS | 5.2.7 | 3.1 | 2.3.2 Standards and schemes for Industry 4.0 and ICS (SWG 3.1) | http://dx.doi.org/10.6028/NIST.SP.800-82r2 | View | |
| 26 | 90 | NIST SP 800-53 (Security and Privacy Controls for Federal Information Systems and Organisations) | NIST | USA Federal IT systems | 5.6.4 | 3.5 | 2.3.6 Standards and schemes for public services / eGovernment / Digital Citizenship (SWG 3.5) | https://web.nvd.nist.gov/view/800-53/Rev4/home | View | |
| 27 | 89 | NIST IR 7628 (Guidelines for Smart Grid Cybersecurity) | NIST | USA Smart grids | 5.3.4 | 3.2 | 2.3.3 Standards for energy and smart grids (SWG 3.2) | https://www.nist.gov/node/562431 | View | |
| 28 | 88 | NIST Framework for Improving Critical Infrastructure Cybersecurity (NIST Cybersecurity Framework) | NIST | USA General | 5.10.3 | 2.3.10 Standards and schemes for critical infrastructures | https://www.nist.gov/cyberframework | View | ||
| 29 | 87 | NERC Critical Infrastructures Protection (CIP) standards 002 - 009 | NERC | USA Electrical Grid | 5.3.3 | 3.2 | 2.3.3 Standards for energy and smart grids (SWG 3.2) | http://www.nerc.com/pa/Stand/Pages/CIPStandar ds.aspx | View | |
| 30 | 86 | NCSC Certified Professional (CCP) certifications | NCSC | 6.9 | 2.4 Standards and schemes for security professionals | https://www.ncsc.gov.uk/scheme/certified-professional | View | |||
| 31 | 85 | National Security Framework (Esquema Nacional de Seguridad - ENS) | Entidad Nacional de Acreditación | Spain Public sector organisations and their service providers | 5.6.3 | 3.5 | 2.3.6 Standards and schemes for public services / eGovernment / Digital Citizenship (SWG 3.5) | https://administracionelectronica.gob.es/ctt/verPe stanaGeneral.htm?idIniciativa=ens&idioma=en#.WNpAE7u7r4Z | View | |
| 32 | 84 | National IT Evaluation Scheme (NITES) | CSA Singapore | Singapore General | 3.1.5 | 2.1.1 Standards and schemes for generic IT products | https://www.csa.gov.sg/ | View | ||
| 33 | 83 | MIFARE Security Certification | NXP | International MIFARE products | 3.9.1 | 2.1.9 Standards and schemes for other IT | https://www.mifare.net/en/aboutmifare/certification/ | View | ||
| 34 | 82 | Microsoft Security Development Lifecycle | Microsoft | International | 5.11.4 | 2.3.11 Standards and schemes for general secure software development | https://www.microsoft.com/en-us/sdl/ | View | ||
| 35 | 81 | LEET Security Stamp | LEET Security | Spain | 5.1.16 | 2.3.1 Standards and schemes for generic organisations | Police | http://www.leetsecurity.com/ | View | |
| 36 | 80 | KRITIS | Bundesamt für Sicherheit in der Informationstechnik (BSI) | Germany General | 5.10.2 | 2.3.10 Standards and schemes for critical infrastructures | http://www.kritis.bund.de/SubSites/Kritis/DE/Publi kationen/publikationen_node.html | View | ||
| 37 | 79 | IT Health CHECK Service (CHECK) | National Centre for Cyber Security (NCSC) | UK Healthcare providers | 5.7.3 | 3.6 | 2.3.7 Standards and schemes for healthcare (SWG 3.6) | https://www.ncsc.gov.uk/articles/checkfundamental-principles | View | |
| 38 | 78 | IT Grundschutz | Bundesamt für Sicherheit in der Informationstechnik (BSI) | Germany | 5.1.7 | 2.3.1 Standards and schemes for generic organisations | https://www.bsi.bund.de/EN/Topics/ITGrundschut z/itgrundschutz_node.html | View | ||
| 39 | 77 | ISO-SAE 21434 (Road Vehicles – Cybersecurity Engineering) | ISO / SAE | International Vehicles | 5.4.2 | 3.3 | 2.3.4 Standards and schemes for transportation (road, rail, air, sea) (SWG 3.3) | https://www.iso.org/standard/70918.html | View | |
| 40 | 76 | ISO/IEC 62304 (Medical device software – Software life cycle processes) | ISO/IEC | International Medical software development | 5.7.2 | 3.6 | 2.3.7 Standards and schemes for healthcare (SWG 3.6) | http://www.iso.org/iso/home/store/catalogue_ics/ catalogue_detail_ics.htm?csnumber=71604 | View | |
| 41 | 75 | ISO/IEC 29100 (Privacy architecture framework) and related ISO standards | ISO/IEC | International | 5.1.15 | 2.3.1 Standards and schemes for generic organisations | https://www.iso.org/obp/ui/#iso:std:isoiec:29100:ed-1:v1:en | View | ||
| 42 | 74 | ISO/IEC 27799 (Health informatics - Information security management in health using ISO/IEC 27002) | ISO/IEC | International | 5.7.1 | 2.3.7 Standards and schemes for healthcare (SWG 3.6) | https://www.iso.org/standard/62777.html | View | ||
| 43 | 73 | ISO/IEC 27036 (Information security for supplier relationships) | ISO/IEC | International | 5.1.14 | 2.3.1 Standards and schemes for generic organisations | http://www.iso.org/iso/home/store/catalogue_tc/c atalogue_detail.htm?csnumber=59648 | View | ||
| 44 | 72 | ISO/IEC 27035 (Information security incident management) | ISO/IEC | International | 5.1.13 | 2.3.1 Standards and schemes for generic organisations | http://www.iso.org/iso/home/store/catalogue_tc/c atalogue_detail.htm?csnumber=62071 | View | ||
| 45 | 71 | ISO/IEC 27034 (Application security) | ISO/IEC | International | 5.1.12 | 2.3.1 Standards and schemes for generic organisations | http://www.iso.org/iso/home/store/catalogue_tc/c atalogue_detail.htm?csnumber=44378 | View | ||
| 46 | 70 | ISO/IEC 27033 (Network security) | ISO/IEC | International | 5.1.11 | 2.3.1 Standards and schemes for generic organisations | http://www.iso.org/iso/home/store/catalogue_tc/c atalogue_detail.htm?csnumber=63461 | View | ||
| 47 | 69 | ISO/IEC 27032 (Guidelines for cybersecurity) | ISO/IEC | International | 5.1.10 | 2.3.1 Standards and schemes for generic organisations | http://www.iso.org/iso/iso_catalogue/catalogue_tc /catalogue_detail.htm?csnumber=44375 | View | ||
| 48 | 68 | ISO/IEC 27021 (Competence requirements for information security management systems professionals) | ISO | 6.8 | 2.4 Standards and schemes for security professionals | http://www.iso.org/iso/catalogue_detail.htm?csnumber=61003 | View | |||
| 49 | 67 | ISO/IEC 27019 (Information security management guidelines based on ISO/IEC 27002 for process control systems specific to the energy utility industry) | ISO/IEC | International General energy systems | 5.3.2 | 3.2 | 2.3.3 Standards for energy and smart grids (SWG 3.2) | https://www.iso.org/standard/43759.html | View | |
| 50 | 66 | ISO/IEC 27018 (Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors) | ISO/IEC | International | 4.7 | 1.2 | 2.2 Standards and schemes for cloud service providers (SWG 1.2) | http://www.iso.org/iso/catalogue_detail.htm?csnu mber=61498 | View | |
| 51 | 65 | ISO/IEC 27017 (Code of practice for information security controls based on ISO/IEC 27002 for cloud services) | ISO/IEC | International | 4.6 | 1.2 | 2.2 Standards and schemes for cloud service providers (SWG 1.2) | http://www.iso.org/iso/catalogue_detail?csnumbe r=43757 | View | |
| 52 | 64 | ISO/IEC 27015 (Information security management guidelines for financial services) | ISO/IEC | International Financial service providers | 5.5.3 | 3.4 | 2.3.5 Standards and schemes for financial services and insurance (SWG3.4) | https://www.iso.org/standard/43755.html | View | |
| 53 | 63 | ISO/IEC 27011 (Code of practice for Information security controls based on ISO/IEC 27002 for telecommunications organisations) | ISO/IEC | International | 5.9.2 | 3.8 | 2.3.9 Standards and schemes for telecom, media and content (SWG 3.8) | https://www.iso.org/standard/64143.html | View | |
| 54 | 62 | ISO/IEC 27001 (Information Security Management Systems – Requirements) | ISO/IEC | International | 5.1.8 | 2.3.1 Standards and schemes for generic organisations | Police,Retail,smartgrid | http://www.iso.org/iso/iso27001http://www.iso.org/iso/catalogue_detail?csnumbe r=54534 | View | |
| 55 | 61 | ISO/IEC 21827 (Systems Security Engineering - Capability Maturity Model) | ISO/IEC | International | 5.11.3 | 2.3.11 Standards and schemes for general secure software development | https://www.iso.org/standard/44716.html | View | ||
| 56 | 60 | ISO/IEC 20243 (O-TTPS -- Mitigating maliciously tainted and counterfeit products) | ISO/IEC | International | 5.1.17 | 2.3.1 Standards and schemes for generic organisations | http://www.iso.org/iso/catalogue_detail.htm?csnu mber=67394 | View | ||
| 57 | 59 | ISO/IEC 19792 (Security evaluation of biometrics) | ISO/IEC | International Biometric systems | 3.9.2 | 2.1.9 Standards and schemes for other IT | https://www.iso.org/standard/51521.html | View | ||
| 58 | 58 | ISO/IEC 19790 (Security requirements for cryptographic modules) | ISO/IEC | International | 3.6.4 | 2.1.6 Standards and schemes for cryptographic modules | Police,Retail,smartgrid | https://www.iso.org/standard/52906.html | View | |
| 59 | 57 | ISKE | Administration system for the state information system (RIHA) | Estonia State and local governments handling databases or registers | 5.6.2 | 3.5 | 2.3.6 Standards and schemes for public services / eGovernment / Digital Citizenship (SWG 3.5) | https://www.ria.ee/en/iske-en.html | View | |
| 60 | 56 | ISF Standard of Good Practice for Information Security | Information Security Forum | International | 5.1.6 | 2.3.1 Standards and schemes for generic organisations | https://www.securityforum.org/tool/the-isfstandardrmation-security/ | View | ||
| 61 | 55 | ISACA certifications | ISACA | 6.5 | 2.4 Standards and schemes for security professionals | http://www.isaca.org/Certification/Pages/default.aspx | View | |||
| 62 | 54 | ISA/IEC 62443 Cybersecurity Certificate Programs | ISA | 6.6 | 2.4 Standards and schemes for security professionals | https://www.isa.org/training-and-certifications/isacertification/isa99iec-62443/isa99iec-62443-cybersecuritycertificate-programs/ | View | |||
| 63 | 53 | ISA/IEC 62433 (Security for Industrial Automation and Control Systems) | ISA/IEC | International General ICS | 5.2.6 | 3.1 | 2.3.2 Standards and schemes for Industry 4.0 and ICS (SWG 3.1) | https://webstore.iec.ch/searchform&q=62443http://www.isasecure.org/en-US/ | View | |
| 64 | 52 | ISA/IEC 62433 (Security for Industrial Automation and Control Systems) | ISA/IEC | International | 3.2.1 | 3.1 | 2.1.2 Standards and schemes for products used in Industry 4.0 and ICS (SWG3.1) | https://webstore.iec.ch/searchform&q=62443http://www.isasecure.org/en-US/ | View | |
| 65 | 51 | ISA/IEC 62433 (Security for Industrial Automation and Control Systems) | ISA/IEC | International General ICS | 5.8.1 | 3.7 | 2.3.8 Standards and schemes for smart cities and smart buildings (SWG3.7) | https://webstore.iec.ch/searchform&q=62443http://www.isasecure.org/en-US/ | View | |
| 66 | 50 | IoT Security Testing Framework | ICSA Labs | USA / International | 3.8.1 | 2.1.8 Standards and schemes for IoT products | https://www.icsalabs.com/technologyprogram/iot-testing | View | ||
| 67 | 49 | IoT Security Compliance Framework | IoT Security Foundation | International General | 5.14.5 | 2.3.14 Standards and schemes for IoT device vendors | Police,Retail,smartgrid | https://iotsecurityfoundation.org/best-practiceguidelines/ | View | |
| 68 | 48 | Industrial Internet of Things Security Framework | Industrial Internet Consortium | International Industrial IoT systems | 5.14.3 | 2.3.14 Standards and schemes for IoT device vendors | http://www.iiconsortium.org/IISF.htm | View | ||
| 69 | 47 | IEEE C37.240 (Cybersecurity Requirements for Substation Automation, Protection, and Control Systems) | IEEE | International Power transmission | 3.3.2 | 3.2 | 2.1.3 Standards and schemes for products used in energy and smart grids (SWG3.2) | smartgrid | View | |
| 70 | 46 | IEEE 1686 (Substation Intelligent Electronic Devices (IEDs) Cyber Security Capabilities) | IEEE | International Power transmission | 3.3.1 | 3.2 | 2.1.3 Standards and schemes for products used in energy and smart grids (SWG3.2) | Police,Retail,smartgrid | https://standards.ieee.org/findstds/standard/1686 -2013.html | View |
| 71 | 45 | IEC 62351 (Power systems management and associated information exchange – Data and communications security) | IEC | IEC TC 57 series of protocols | 3.3.3 | 3.2 | 2.1.3 Standards and schemes for products used in energy and smart grids (SWG3.2) | smartgrid | http://www.iec.ch/search/?q=62351 | View |
| 72 | 44 | ICS-CERT assessments: CSET DAR NAVV | ICS-CERT | USA General ICS | 5.2.5 | 3.1 | 2.3.2 Standards and schemes for Industry 4.0 and ICS (SWG 3.1) | https://ics-cert.us-cert.gov/Assessments | View | |
| 73 | 43 | IACS Cybersecurity Certification Framework (proposed) | JRC | Europe | 3.2.2 | 3.1 | 2.1.2 Standards and schemes for products used in Industry 4.0 and ICS (SWG3.1) | Police,Retail,smartgrid | View | |
| 74 | 42 | GSMA Security Accreditation Scheme | GSMA | International UICC providers | 5.9.1 | 3.8 | 2.3.9 Standards and schemes for telecom, media and content (SWG 3.8) | Retail | http://www.gsma.com/aboutus/leadership/commit tees-and-groups/working-groups/fraud-securitygroup/security-accreditation-scheme | View |
| 75 | 41 | GSMA Network Equipment security Assurance Scheme | GSMA and 3GPP | International | 3.4.1 | 2.1.4 Standards and schemes for products used in telecom, media and content (SWG3.8) | http://www.3gpp.org/news-events/3gppnews/1569secam_for_3gpp_nodes | View | ||
| 76 | 40 | GSMA IoT Security Guidelines | GSMA | Internal Telecom | 5.14.2 | 2.3.14 Standards and schemes for IoT device vendors | Retail | http://www.gsma.com/connectedliving/gsma-iotsecurity-guidelines-complete-document-set/ | View | |
| 77 | 39 | GIAC certifications | GIAC | 6.4 | 2.4 Standards and schemes for security professionals | https://www.giac.org/certifications/ | View | |||
| 78 | 38 | Future-proofing the Connected World | Cloud Security Alliance IoT Working Group | International General | 5.14.1 | 2.3.14 Standards and schemes for IoT device vendors | https://cloudsecurityalliance.org/download/futureproofing-the-connected-world/ | View | ||
| 79 | 37 | FIPS 140-2 | NIST | USA | 3.6.3 | 2.1.6 Standards and schemes for cryptographic modules | http://csrc.nist.gov/groups/STM/cmvp/standards.html#02 | View | ||
| 80 | 36 | FINCSC – Finnish Cyber Security Certificate | JAMK University of Applied Sciences and partners | Finland | 5.1.5 | 2.3.1 Standards and schemes for generic organisations | https://www.fincsc.fi/ | View | ||
| 81 | 35 | European Privacy Seal | EuroPriSe | Europe Generic products, websites | 3.1.4 | 2.1.1 Standards and schemes for generic IT products | https://www.european-privacy-seal.eu/EPSen/Home | View | ||
| 82 | 34 | EuroCloud StarAudit Certification | EuroCloud | Europe | 4.5 | 1.2 | 2.2 Standards and schemes for cloud service providers (SWG 1.2) | https://staraudit.org/ | View | |
| 83 | 33 | EMVCo Security Evaluation | EMVCo | International Payment cards | 3.5.1 | 2.1.5 Standards and schemes for products used in the payment industry | https://www.emvco.com/approvals.aspx?id=31 | View | ||
| 84 | 32 | EC-Council certifications | EC-Council | 6.3 | 2.4 Standards and schemes for security professionals | https://www.eccouncil.org/programs/ | View | |||
| 85 | 31 | Cybersecurity Capability Maturity Model | US Department of Energy | US Energy, Electricity, Oil and Gas | 5.3.1 | 3.2 | 2.3.3 Standards for energy and smart grids (SWG 3.2) | https://energy.gov/oe/cybersecurity-criticalenergy-infrastructure/cybersecurity-capabilitymaturity-model-c2m2-program | View | |
| 86 | 30 | Cyber Resilience Review | US-CERT | US | 5.1.4 | 2.3.1 Standards and schemes for generic organisations | https://www.us-cert.gov/ccubedvp/assessments | View | ||
| 87 | 29 | Cyber Essentials / 10 steps to Cyber security | CREST | UK | 5.1.3 | 2.3.1 Standards and schemes for generic organisations | Police | https://www.cyberessentials.org/ | View | |
| 88 | 28 | CREST Simulated Targeted Attack and Response (STAR) | Council for Registered Ethical Security Testers (CREST) | UK Accreditation for CBEST, see section 5.5.2 | 5.12.1 | 2.3.12 Standards and schemes for cybersecurity service providers | http://www.crest-approved.org/uk/what-wedo/index.html | View | ||
| 89 | 27 | CREST certifications | CREST | 6.2 | 2.4 Standards and schemes for security professionals | http://www.crest-approved.org/uk/examinations/index.html | View | |||
| 90 | 26 | CompTIA certifications (related to security) | CompTIA | 6.1 | 2.4 Standards and schemes for security professionals | https://certification.comptia.org/certifications | View | |||
| 91 | 25 | Common Criteria | Signatories of the SOG-IS | International Generic | 3.1.3 | 2.1.1 Standards and schemes for generic IT products | www.sogis.org | View | ||
| 92 | 24 | Common Criteria | Signatories of the CCRA | International Generic | 3.1.3 | 2.1.1 Standards and schemes for generic IT products | https://www.commoncriteriaportal.org/ | View | ||
| 93 | 23 | Commercial Product Assurance (CPA) | NCSC | UK Generic | 3.1.2 | 2.1.1 Standards and schemes for generic IT products | https://www.ncsc.gov.uk/scheme/commercialproduct-assurance-cpa | View | ||
| 94 | 22 | Code of Practice for Cloud Service Providers | Cloud Industry Forum | International | 4.4 | 1.2 | 2.2 Standards and schemes for cloud service providers (SWG 1.2) | https://www.cloudindustryforum.org/content/code -practice-cloud-service-providers | View | |
| 95 | 21 | Cloud Security Alliance Cloud Controls Matrix | Cloud Security Alliance (CSA) | International | 4.3 | 1.2 | 2.2 Standards and schemes for cloud service providers (SWG 1.2) | https://cloudsecurityalliance.org/group/cloudcontrols-matrix/certification/#_downloads | View | |
| 96 | 20 | Cloud Computing Compliance Controls Catalogue (C5) | Bundesamt für Sicherheit in der Informationstechnik (BSI) | Germany | 4.2 | 1.2 | 2.2 Standards and schemes for cloud service providers (SWG 1.2) | https://www.bsi.bund.de/EN/Topics/CloudComput ing/Compliance_Controls_Catalogue/Compliance _Controls_Catalogue_node.html | View | |
| 97 | 19 | CIS Critical Security Controls | Center for Security SANS Institute Internet | International | 5.1.2 | 2.3.1 Standards and schemes for generic organisations | Retail | https://www.cisecurity.org/criticalcontrols/Library.cfm https://www.sans.org/critical-security-controls/ | View | |
| 98 | 18 | CESG Assisted Products Scheme (CAPS) | NCSC | UK | 3.6.2 | 2.1.6 Standards and schemes for cryptographic modules | https://www.ncsc.gov.uk/scheme/products-cesgassisted-products-service | View | ||
| 99 | 17 | Certification de Sécurité de Premier Niveau (CSPN) | ANSSI | France Generic | 3.1.1 | 2.1.1 Standards and schemes for generic IT products | https://www.ssi.gouv.fr/administration/produitscertifies/cspn/les-procedures-formulaires-etmethodologies | View | ||
| 100 | 16 | CBEST | Bank of England | UK Financial service providers | 5.5.2 | 3.4 | 2.3.5 Standards and schemes for financial services and insurance (SWG3.4) | http://www.bankofengland.co.uk/financialstability/ fsc/Pages/cbest.aspx# | View | |
| 101 | 15 | Catalog of Control Systems Security | Department of Homeland Security (DHS) | USA General ICS | 5.2.4 | 3.1 | 2.3.2 Standards and schemes for Industry 4.0 and ICS (SWG 3.1) | https://ics-cert.us-cert.gov/sites/default/files/documents/CatalogofR ecommendationsVer7.pdf | View | |
| 102 | 14 | Building Security in Maturity Model (BSIMM) | Gary McGraw, Sammy Migues, and Jacob West | International | 5.11.2 | 2.3.11 Standards and schemes for general secure software development | https://www.bsimm.com/ | View | ||
| 103 | 13 | BSI PAS 754 (Software trustworthiness –Governance and management – Specification) | British Standards Institution (BSI) | UK | 5.11.1 | 2.3.11 Standards and schemes for general secure software development | http://shop.bsigroup.com/ProductDetail/?pid=000000000030284608 | View | ||
| 104 | 12 | BSI ICS Security Compendium | Bundesamt für Sicherheit in der Informationstechnik (BSI) | Germany General ICS | 5.2.3 | 3.1 | 2.3.2 Standards and schemes for Industry 4.0 and ICS (SWG 3.1) | Retail,smartgrid | https://www.bsi.bund.de/SharedDocs/Downloads/ EN/BSI/ICS/ICS-Security_compendium.html | View |
| 105 | 11 | BITS Software Assurance Framework | BITS | International Software development | 5.5.1 | 3.1 | 2.3.5 Standards and schemes for financial services and insurance (SWG3.4) | http://fsroundtable.org/bits/about-bits/ | View | |
| 106 | 10 | BITAG Internet of Things (IoT) Security and Privacy Recommendations | BITAG | International General | 5.14.1 | 2.3.14 Standards and schemes for IoT device vendors | https://www.bitag.org/report-internet-of-thingssecurity-privacy-recommendations.php | View | ||
| 107 | 9 | ASD Cryptographic Evaluation | Australian Signals Directorate (ASD) | Australia | 3.6.1 | 2.1.6 Standards and schemes for cryptographic modules | http://www.asd.gov.au/infosec/evaluations.htm | View | ||
| 108 | 8 | Application Security and Development Security Technical Implementation Guide (STIG) | DISA | USA Federal IT systems | 5.6.1 | 3.5 | 2.3.6 Standards and schemes for public services / eGovernment / Digital Citizenship (SWG 3.5) | http://iase.disa.mil/stigs/app-security/appsecurity/Pages/index.aspx | View | |
| 109 | 7 | API STD 1164 (Pipeline SCADA security) | American Petroleum Institute (API) | USA Oil and Gas | 5.2.2 | 3.1 | 2.3.2 Standards and schemes for Industry 4.0 and ICS (SWG 3.1) | Not applicable | https://global.ihs.com/doc_detail.cfm?document_ name=API%20STD%201164 | View |
| 110 | 6 | ANSSI SecNumCloud | ANSSI | France | 4.1 | 1.2 | 2.2 Standards and schemes for cloud service providers (SWG 1.2) | https://www.ssi.gouv.fr/administration/qualificatio ns/prestataires-de-services-de-confiancequalifies/prestataires-de-service-dinformatiqueennuage-secnumcloud/ | View | |
| 111 | 5 | ANSSI requirements for security service providers (PDIS, PRIS, PASSI, PSCE, PSHE) | ANSSI | France Service providers for Incident detection, Incident response, Information system security, auditing, Electronic certificates, Electronic timestamping | 5.12.1 | 2.3.12 Standards and schemes for cybersecurity service providers | https://www.ssi.gouv.fr/administration/qualificatio ns/prestataires-de-services-de-confiancequalifies/ | View | ||
| 112 | 4 | ANSSI Cybersecurity for Industrial control Systems | ANSSI | France General ICS | 5.2.1 | 3.1 | 2.3.2 Standards and schemes for Industry 4.0 and ICS (SWG 3.1) | https://www.ssi.gouv.fr/uploads/2014/01/industria l_security_WG_Classification_Method.pdfhttps://www.ssi.gouv.fr/uploads/2014/01/industria l_security_WG_detailed_measures.pdf | View | |
| 113 | 3 | AEI Seal of Cybersecurity for Organisations | AEI | Spain General | 5.10.1 | 2.3.10 Standards and schemes for critical infrastructures | https://www.aeiciberseguridad.es/index.php/Sello _AEI | View | ||
| 114 | 2 | AEI Seal of Cybersecurity for Organisations | AEI | Spain | 5.1.1 | 2.3.1 Standards and schemes for generic organisations | https://www.aeiciberseguridad.es/index.php/Sello _AEI | View | ||
| 115 | 1 | (ISC)² certifications | (ISC)² | 6.7 | 2.4 Standards and schemes for security professionals | https://www.isc2.org/credentials/default.aspx | View | |||
Loading...
Saving...
Loading...