Organisations begin by assessing their exposure to cyber threats. Based on this assessment, one of three assurance levels is assigned: Basic, Important, or Essential. Want to determine the appropriate assurance level for your organisation?
Three-Step Implementation Process
1
Risk Assessment
2
Self-Assessment
This tool helps organisations to evaluate their current cybersecurity measures against the CyberFundamentals framework and guides them in implementing the necessary actions to achieve compliance.
3
Conformity Assessment (optional)
This final step involves external validation of the self-assessment. While optional, it may be required by national legislation or sector- specific regulations, or voluntarily adopted by organisations.