The original post: /r/cybersecurity by /u/arunsivadasan on 2024-11-16 21:44:09.
Hi everyone! I have an (unofficial) mapping of NIST CSF 2.0 to ISO 27001:2022 on my site:
https://allaboutgrc.com/risk-and-controls-database/
Check it and let me know if its helpful.
Caveat: It only covers the Annex A controls. Its based on a mapping that CSF 1.1 had with ISO 27001:2013. I used that to map with the newer ISO 27001:2022 to get this outcome. If anyone would like to contribute with better relationships or mapping with the clauses, please reach out. I would be happy to include and give credit to you.
You must log in or register to comment.