A NIS Directive compliant Cybersecurity Maturity Model

Abstract

The EU NIS Directive introduces obligations related to the security of the network and information systems for Operators of Essential Services and for Digital Service Providers. Moreover, National Competent Authorities for cybersecurity are required to assess compliance with these obligations. This paper describes a novel Cybersecurity Maturity Assessment Framework (CMAF) that is tailored to the NIS Directive requirements. CMAF can be used either as a self-assessment tool from Operators of Essential Services and Digital Service Providers or as an audit tool from the National Competent Authorities for cybersecurity.

Description

Keywords

NSID

Citation

Drivas, G., Chatzopoulou, A., Maglaras, L., Lambrinoudakis, C., Cook, A. and Janicke, J. (2020) A NIS Directive compliant Cybersecurity Maturity Model. IEEE Computer Society Signature Conference on Computers, Software and Applications (COMPSAC 2020), Madrid, Spain,13-17 July 2020.

Rights

Research Institute