The following documents are referenced in the Cybersecurity Fundamentals and In-Depth training classes.
A URL is provided for those with restrictions. Some of these, for example, the ISO documents, must be purchased.
FISMA 2014 Title III, E-Government Act (Federal Information Security Management Act)
Executive Order 13636 – Improving Critical Infrastructure Cybersecurity
CIS-Controls-V7.1-Mapping-to-NIST-CSF
HIPAA Security Rule Crosswalk to NIST Cybersecurity Framework
ISO/IEC 27005:2011 guidelines for information security risk management. *Purchase Required*
ISA 62443-2-1:2009 & ISA 62443-3-3:2013 *Purchase Required*
NIST Special Publication 800-53 Revision 4
Draft NIST Special Publication 800-53 Revision 5
NIST IR 8183 CSF Manufacturing Profile
NIST SP 800-171 (CUI) for Federal Systems
Baldrige Cybersecurity Excellence Builder Self-Assessment
Framework for Improving Critical Infrastructure Cybersecurity
Energy Sector Cybersecurity Framework Implementation Guidance
Notional Supply Chain Risk Management Practices for Federal Information Systems
The Cybersecurity Framework 2 Implementation Guidance for Federal Agencies
An Introduction to Privacy Engineering and Risk Management in Federal Systems