diff --git a/AuditGlue/GIS-content-map.md b/AuditGlue/GIS-content-map.md index f796355..390de77 100644 --- a/AuditGlue/GIS-content-map.md +++ b/AuditGlue/GIS-content-map.md @@ -22,7 +22,7 @@ - m400s040: [[iso27diy-m300s510|m300s510]]: **SWOT analysis** ([C4.1](../Corpus/Standards/MoCs/ISO_27001_2022_4.1_MoC%20Understanding%20the%20organization%20and%20its%20context.md)) - m400s050: Stakeholder Analysis ([C4.2](../Corpus/Standards/MoCs/ISO_27001_2022_4.2_MoC%20Understanding%20the%20needs%20and%20expectations%20of%20interested%20parties.md)) - **m410:Organizational Structures** - - [Introduction for Organizational Structures](../Corpus/πŸŽ‡%20Sparks/Introduction%20for%20Organizational%20Structures.md) + - [Introduction for Organizational Structures](../Corpus/Sparks/Introduction%20for%20Organizational%20Structures.md) - Organizational processes ([C4.1](../Corpus/Standards/MoCs/ISO_27001_2022_4.1_MoC%20Understanding%20the%20organization%20and%20its%20context.md)) - Organization Chart ([C4.1](../Corpus/Standards/MoCs/ISO_27001_2022_4.1_MoC%20Understanding%20the%20organization%20and%20its%20context.md)) - Job architecture ([C4.1](../Corpus/Standards/MoCs/ISO_27001_2022_4.1_MoC%20Understanding%20the%20organization%20and%20its%20context.md)) diff --git a/AuditGlue/System alternative/Using AI to create policies.md b/AuditGlue/System alternative/Using AI to create policies.md index b606d85..e86c61e 100644 --- a/AuditGlue/System alternative/Using AI to create policies.md +++ b/AuditGlue/System alternative/Using AI to create policies.md @@ -22,7 +22,7 @@ Examples: 4. develop interventions based on these differences **Threat analysis** -- do a threat analysis, see [Create a threat analysis chatbot](../../Corpus/πŸ’‘Drafts%20and%20Ideas/Controls/Create%20a%20threat%20analysis%20chatbot.md) +- do a threat analysis, see [Create a threat analysis chatbot](../../Corpus/Drafts%20and%20Ideas/Controls/Create%20a%20threat%20analysis%20chatbot.md) **Policy drafting** diff --git a/AuditGlue/iso27DIY content modules.canvas b/AuditGlue/iso27DIY content modules.canvas index 722c20d..1c8bb71 100644 --- a/AuditGlue/iso27DIY content modules.canvas +++ b/AuditGlue/iso27DIY content modules.canvas @@ -429,7 +429,7 @@ "width":340, "height":80 }, - {"id":"6c394a4088d586b3","type":"file","file":"iso27diy-corp/Corpus/πŸ“Ž Attachments/Canvas Cyclus.png","x":382,"y":620,"width":278,"height":200}, + {"id":"6c394a4088d586b3","type":"file","file":"iso27diy-corp/Corpus/Attachments/Canvas Cyclus.png","x":382,"y":620,"width":278,"height":200}, { "id":"1e6b25bf6dcb833e", "type":"text", @@ -470,8 +470,8 @@ "width":1068, "height":60 }, - {"id":"ddfc9917c2c7fc66","type":"file","file":"iso27diy-corp/Corpus/πŸ“Ž Attachments/Canvas Cyclus.png","x":-408,"y":620,"width":278,"height":200}, - {"id":"27d02011ccccb4c0","type":"file","file":"iso27diy-corp/Corpus/πŸ“Ž Attachments/Canvas Cyclus.png","x":-19,"y":620,"width":278,"height":200} + {"id":"ddfc9917c2c7fc66","type":"file","file":"iso27diy-corp/Corpus/Attachments/Canvas Cyclus.png","x":-408,"y":620,"width":278,"height":200}, + {"id":"27d02011ccccb4c0","type":"file","file":"iso27diy-corp/Corpus/Attachments/Canvas Cyclus.png","x":-19,"y":620,"width":278,"height":200} ], "edges":[], "metadata":{ diff --git a/🏭 Clients/DAK/20250309 Rapportage security assessment DAK v1.0.pdf b/Clients/DAK/20250309 Rapportage security assessment DAK v1.0.pdf similarity index 100% rename from 🏭 Clients/DAK/20250309 Rapportage security assessment DAK v1.0.pdf rename to Clients/DAK/20250309 Rapportage security assessment DAK v1.0.pdf diff --git a/🏭 Clients/DAK/250128 Business Impact Analyse DAK.docx b/Clients/DAK/250128 Business Impact Analyse DAK.docx similarity index 100% rename from 🏭 Clients/DAK/250128 Business Impact Analyse DAK.docx rename to Clients/DAK/250128 Business Impact Analyse DAK.docx diff --git a/🏭 Clients/DAK/250128 Incident Respons Plan DAK.docx b/Clients/DAK/250128 Incident Respons Plan DAK.docx similarity index 100% rename from 🏭 Clients/DAK/250128 Incident Respons Plan DAK.docx rename to Clients/DAK/250128 Incident Respons Plan DAK.docx diff --git a/🏭 Clients/DAK/BIA Workshop DAK.md b/Clients/DAK/BIA Workshop DAK.md similarity index 98% rename from 🏭 Clients/DAK/BIA Workshop DAK.md rename to Clients/DAK/BIA Workshop DAK.md index 467c0ac..3c7746e 100644 --- a/🏭 Clients/DAK/BIA Workshop DAK.md +++ b/Clients/DAK/BIA Workshop DAK.md @@ -10,7 +10,7 @@ Gebaseerd op: Resultaten: - [BIA resultaat in MIRO](BIA%20resultaat%20MIRO.pdf) -- [Maximum Down Time systemen per proces](../../Corpus/πŸ“Ž%20Attachments/BIA%20resultaten.numbers) +- [Maximum Down Time systemen per proces](../../Corpus/Attachments/BIA%20resultaten.numbers) - [Rapportage in Word](250128%20Business%20Impact%20Analyse%20DAK.docx) ## Deelnemers diff --git a/🏭 Clients/DAK/BIA resultaat MIRO.pdf b/Clients/DAK/BIA resultaat MIRO.pdf similarity index 100% rename from 🏭 Clients/DAK/BIA resultaat MIRO.pdf rename to Clients/DAK/BIA resultaat MIRO.pdf diff --git a/🏭 Clients/DAK/Due Dilligence en Accountantsrapportage DAK.pdf b/Clients/DAK/Due Dilligence en Accountantsrapportage DAK.pdf similarity index 100% rename from 🏭 Clients/DAK/Due Dilligence en Accountantsrapportage DAK.pdf rename to Clients/DAK/Due Dilligence en Accountantsrapportage DAK.pdf diff --git a/🏭 Clients/DAK/Hulplijst systemen voor DAK kindercentra.md b/Clients/DAK/Hulplijst systemen voor DAK kindercentra.md similarity index 100% rename from 🏭 Clients/DAK/Hulplijst systemen voor DAK kindercentra.md rename to Clients/DAK/Hulplijst systemen voor DAK kindercentra.md diff --git a/🏭 Clients/DAK/IRP Workshop DAK.md b/Clients/DAK/IRP Workshop DAK.md similarity index 96% rename from 🏭 Clients/DAK/IRP Workshop DAK.md rename to Clients/DAK/IRP Workshop DAK.md index 070b280..c55e96a 100644 --- a/🏭 Clients/DAK/IRP Workshop DAK.md +++ b/Clients/DAK/IRP Workshop DAK.md @@ -35,7 +35,7 @@ Voorstelrondje (voor deelnemers die er in de vorige workshop ([BIA](BIA%20Worksh In de workshop van vorige week hebben we gekeken hoe lang systemen gemist konden worden, voordat de verschillende bedrijfsprocessen hiervan schade ondervonden (en het dus meer werd dan 'erg onhandig'). -Daarvan wil ik de resultaten nu met jullie delen: [Maximum Down Time systemen per proces](../../Corpus/πŸ“Ž%20Attachments/BIA%20resultaten.numbers). +Daarvan wil ik de resultaten nu met jullie delen: [Maximum Down Time systemen per proces](../../Corpus/Attachments/BIA%20resultaten.numbers). In deze sessie gaan we voor de kwetsbaarste processen kijken welke noodmaatregelen we kunnen inzetten als de meest kritische systemen uitvallen, hoe we die noodmaatregelen kunnen voorbereiden, wie we daarvoor nodig hebben, en hoe we gaan communiceren met de verschillende stakeholders over die noodmaatregelen. diff --git a/🏭 Clients/DAK/IRP uitwerking.xlsx b/Clients/DAK/IRP uitwerking.xlsx similarity index 100% rename from 🏭 Clients/DAK/IRP uitwerking.xlsx rename to Clients/DAK/IRP uitwerking.xlsx diff --git a/🏭 Clients/DAK/Inventarisatie Toegangsbeheer DAK 2 april 2025.docx b/Clients/DAK/Inventarisatie Toegangsbeheer DAK 2 april 2025.docx similarity index 100% rename from 🏭 Clients/DAK/Inventarisatie Toegangsbeheer DAK 2 april 2025.docx rename to Clients/DAK/Inventarisatie Toegangsbeheer DAK 2 april 2025.docx diff --git a/🏭 Clients/DAK/Inventarisatie beheer SaaS applicaties DAK.md b/Clients/DAK/Inventarisatie beheer SaaS applicaties DAK.md similarity index 100% rename from 🏭 Clients/DAK/Inventarisatie beheer SaaS applicaties DAK.md rename to Clients/DAK/Inventarisatie beheer SaaS applicaties DAK.md diff --git a/🏭 Clients/DAK/LLM destillatie risk interviews DAK.md b/Clients/DAK/LLM destillatie risk interviews DAK.md similarity index 100% rename from 🏭 Clients/DAK/LLM destillatie risk interviews DAK.md rename to Clients/DAK/LLM destillatie risk interviews DAK.md diff --git a/🏭 Clients/DAK/Opdracht DAK.md b/Clients/DAK/Opdracht DAK.md similarity index 100% rename from 🏭 Clients/DAK/Opdracht DAK.md rename to Clients/DAK/Opdracht DAK.md diff --git a/🏭 Clients/DAK/Opdracht Dak aan TSW.docx b/Clients/DAK/Opdracht Dak aan TSW.docx similarity index 100% rename from 🏭 Clients/DAK/Opdracht Dak aan TSW.docx rename to Clients/DAK/Opdracht Dak aan TSW.docx diff --git a/🏭 Clients/DAK/Pentest DAK rapport Vitaen.md b/Clients/DAK/Pentest DAK rapport Vitaen.md similarity index 96% rename from 🏭 Clients/DAK/Pentest DAK rapport Vitaen.md rename to Clients/DAK/Pentest DAK rapport Vitaen.md index 66f6a0c..5a26534 100644 --- a/🏭 Clients/DAK/Pentest DAK rapport Vitaen.md +++ b/Clients/DAK/Pentest DAK rapport Vitaen.md @@ -51,7 +51,7 @@ Kwetsbaarheden gescoord volgens het Common Vulnerability Scoring System ([CVSS v Voor het gebruik van de SA_VEEAM backup software is een Domain Administrator account aangemaakt. Dit geeft directe toegang geeft tot de volledige Active Directory-omgeving. Een aanvaller kan hiermee back-ups manipuleren, verwijderen of zelfs de volledige Active Directory overnemen. Het principe van least privilege lijkt niet te zijn toegepast Volgens Vitaen is dit 'in de meeste gevallen niet noodzakelijk en verhoogt het aanvalsoppervlak aanzienlijk': ->Aangezien dit account vatbaar is voor een [Kerberoasting](../../Corpus/πŸŽ‡%20Sparks/Kerberoasting.md) aanval, is het mogelijk gebleken de wachtwoord hash te bemachtigen. Het bleek echter niet mogelijk in de korte tijd dat de opdracht plaatsvond, om hiervan het wachtwoord te brute-forcen. +>Aangezien dit account vatbaar is voor een [Kerberoasting](../../Corpus/Sparks/Kerberoasting.md) aanval, is het mogelijk gebleken de wachtwoord hash te bemachtigen. Het bleek echter niet mogelijk in de korte tijd dat de opdracht plaatsvond, om hiervan het wachtwoord te brute-forcen. **Oplossingsrichting** > Vitaen adviseert om het principe van least privilege toe te passen: service accounts mogen alleen de rechten krijgen die strikt noodzakelijk zijn voor hun functionaliteit. Waar mogelijk moeten alternatieve oplossingen zoals Managed Service Accounts (MSA) of Group Managed Service Accounts (gMSA) worden gebruikt, die automatisch wachtwoorden roteren en minder risicovol zijn. Daarnaast moet het gebruik van service accounts met verhoogde rechten actief worden gemonitord en gelogd, zodat afwijkend gedrag direct wordt opgemerkt. diff --git a/🏭 Clients/DAK/Pentest DAK.md b/Clients/DAK/Pentest DAK.md similarity index 100% rename from 🏭 Clients/DAK/Pentest DAK.md rename to Clients/DAK/Pentest DAK.md diff --git a/🏭 Clients/DAK/Planning DAK 14012025 1.md b/Clients/DAK/Planning DAK 14012025 1.md similarity index 100% rename from 🏭 Clients/DAK/Planning DAK 14012025 1.md rename to Clients/DAK/Planning DAK 14012025 1.md diff --git a/🏭 Clients/DAK/Planning DAK 14012025.md b/Clients/DAK/Planning DAK 14012025.md similarity index 100% rename from 🏭 Clients/DAK/Planning DAK 14012025.md rename to Clients/DAK/Planning DAK 14012025.md diff --git a/🏭 Clients/DAK/Presentatie BIA voor DAK Kindercentra 13 januari 2025.key b/Clients/DAK/Presentatie BIA voor DAK Kindercentra 13 januari 2025.key similarity index 100% rename from 🏭 Clients/DAK/Presentatie BIA voor DAK Kindercentra 13 januari 2025.key rename to Clients/DAK/Presentatie BIA voor DAK Kindercentra 13 januari 2025.key diff --git a/🏭 Clients/DAK/Risico-inventarisatie DAK.md b/Clients/DAK/Risico-inventarisatie DAK.md similarity index 100% rename from 🏭 Clients/DAK/Risico-inventarisatie DAK.md rename to Clients/DAK/Risico-inventarisatie DAK.md diff --git a/🏭 Clients/DAK/Uittreksel Due Dilligence en Accountantsrapportage DAK.md b/Clients/DAK/Uittreksel Due Dilligence en Accountantsrapportage DAK.md similarity index 100% rename from 🏭 Clients/DAK/Uittreksel Due Dilligence en Accountantsrapportage DAK.md rename to Clients/DAK/Uittreksel Due Dilligence en Accountantsrapportage DAK.md diff --git a/🏭 Clients/DAK/Uitvraag DAK.md b/Clients/DAK/Uitvraag DAK.md similarity index 100% rename from 🏭 Clients/DAK/Uitvraag DAK.md rename to Clients/DAK/Uitvraag DAK.md diff --git a/🏭 Clients/DAK/Uitvraag DAK.xlsx b/Clients/DAK/Uitvraag DAK.xlsx similarity index 100% rename from 🏭 Clients/DAK/Uitvraag DAK.xlsx rename to Clients/DAK/Uitvraag DAK.xlsx diff --git a/🏭 Clients/DAK/Vervolgopdracht DAK.md b/Clients/DAK/Vervolgopdracht DAK.md similarity index 100% rename from 🏭 Clients/DAK/Vervolgopdracht DAK.md rename to Clients/DAK/Vervolgopdracht DAK.md diff --git a/🏭 Clients/DAK/Voorstel beleidsvorming informatiebeveiliging voor Dak kindercentra.docx b/Clients/DAK/Voorstel beleidsvorming informatiebeveiliging voor Dak kindercentra.docx similarity index 100% rename from 🏭 Clients/DAK/Voorstel beleidsvorming informatiebeveiliging voor Dak kindercentra.docx rename to Clients/DAK/Voorstel beleidsvorming informatiebeveiliging voor Dak kindercentra.docx diff --git a/🏭 Clients/DAK/Voorstel vervolg DAK.bike b/Clients/DAK/Voorstel vervolg DAK.bike similarity index 100% rename from 🏭 Clients/DAK/Voorstel vervolg DAK.bike rename to Clients/DAK/Voorstel vervolg DAK.bike diff --git a/🏭 Clients/DAK/_Project DAK Kindercentra.md b/Clients/DAK/_Project DAK Kindercentra.md similarity index 100% rename from 🏭 Clients/DAK/_Project DAK Kindercentra.md rename to Clients/DAK/_Project DAK Kindercentra.md diff --git a/Clients/Gastenhuis/Gastenhuis Projectaanpak.canvas b/Clients/Gastenhuis/Gastenhuis Projectaanpak.canvas new file mode 100644 index 0000000..7533b63 --- /dev/null +++ b/Clients/Gastenhuis/Gastenhuis Projectaanpak.canvas @@ -0,0 +1,471 @@ +{ + "nodes":[ + {"id":"09f6d6c1e8efb6e6","type":"group","x":-460,"y":1080,"width":1160,"height":620,"label":"Beleid voor Uitvoering (H8)"}, + {"id":"7a48b34c6273cdae","type":"group","x":-460,"y":-580,"width":1160,"height":540,"label":"Context, Strategie en Leiderschap (H4, H5)"}, + {"id":"6110ac3efe0e4494","type":"group","x":-460,"y":560,"width":1160,"height":400,"label":"PDCA voor Risicomanagement met de Canvas Methode (H8.2, H8.3)"}, + {"id":"07178dd4253722ab","type":"group","x":-460,"y":80,"width":1160,"height":360,"label":"Risico's en Maatregelen (H6)"}, + {"id":"288cd10d35aa383a","type":"group","x":300,"y":1800,"width":400,"height":360,"label":"Evaluatie en Verbetering (H9, H10)"}, + {"id":"1520dd2bd87611ec","type":"group","x":-80,"y":1800,"width":339,"height":360,"label":"Documentatie (H7.5)"}, + {"id":"1cd9769688fd69c3","type":"group","x":-460,"y":1800,"width":330,"height":360,"label":"Ondersteuning (H7.1-4)"}, + { + "id":"82679ef2d10465f6", + "type":"text", + "text":"Asset Inventarisatie (A5.9)", + "styleAttributes":{}, + "x":320, + "y":110, + "width":340, + "height":80 + }, + { + "id":"90146875843a9610", + "type":"text", + "text":"Dataclassificatie (A5.12)", + "styleAttributes":{}, + "x":320, + "y":220, + "width":340, + "height":80 + }, + { + "id":"f967f99a6d088039", + "type":"text", + "text":"Rollen en Verantw.heden (A5.2-5.4)", + "styleAttributes":{}, + "x":-50, + "y":330, + "width":340, + "height":80 + }, + { + "id":"53437152acfbfaa1", + "type":"text", + "text":"Planning Maatregelen (H8.1)", + "styleAttributes":{}, + "x":320, + "y":330, + "width":340, + "height":80 + }, + { + "id":"4c92dc5b2f76a9a5", + "type":"text", + "text":"Risicoinventarisatie (H6.1.2)", + "styleAttributes":{}, + "x":-50, + "y":110, + "width":340, + "height":80 + }, + { + "id":"4db47e26ac77f040", + "type":"text", + "text":"Penetratie test (A5.35, A8.8)", + "styleAttributes":{ + "textAlign":null + }, + "x":-420, + "y":220, + "width":340, + "height":80 + }, + { + "id":"872cfd9071333367", + "type":"text", + "text":"Risicoanalyse (H6.1.2)", + "styleAttributes":{}, + "x":-50, + "y":220, + "width":340, + "height":80 + }, + { + "id":"40e49243a6b68dcb", + "type":"text", + "text":"Identificeren Maatregelen (H6.1.3)", + "styleAttributes":{}, + "x":-420, + "y":330, + "width":340, + "height":80 + }, + { + "id":"464dfc9a3def80c2", + "type":"text", + "text":"Dreigingsanalyse (A5.7)", + "styleAttributes":{}, + "x":-420, + "y":110, + "width":340, + "height":80 + }, + { + "id":"41e3b0bc38d8de84", + "type":"text", + "text":"SWOT analyse (H4.1)", + "styleAttributes":{}, + "x":-420, + "y":-340, + "width":340, + "height":80 + }, + { + "id":"763fb2036c5dbdde", + "type":"text", + "text":"DESTEP analyse (H4.2)", + "styleAttributes":{}, + "x":-50, + "y":-340, + "width":340, + "height":80 + }, + { + "id":"c8f64dbe95f776d2", + "type":"text", + "text":"Planning ISMS (H6.1.1)", + "styleAttributes":{"textAlign":"center"}, + "x":-420, + "y":-140, + "width":1080, + "height":60 + }, + { + "id":"047bf657e7c0381f", + "type":"text", + "text":"Functiehuis (H4.1)", + "styleAttributes":{}, + "x":-420, + "y":-240, + "width":340, + "height":80 + }, + { + "id":"a3402198a7fa4e49", + "type":"text", + "text":"Bedrijfsprocessen (H4.1)", + "styleAttributes":{}, + "x":-50, + "y":-240, + "width":340, + "height":80 + }, + { + "id":"0b7306dec1c85f8d", + "type":"text", + "text":"Stakeholder analyse (H4.2)", + "styleAttributes":{}, + "x":320, + "y":-340, + "width":340, + "height":80 + }, + { + "id":"4d7c1e2e9e3b5995", + "type":"text", + "text":"Wet- en Regelgeving\n(H4.2, A5.31-34)", + "styleAttributes":{}, + "x":320, + "y":-240, + "width":340, + "height":80 + }, + { + "id":"39689fc26569c699", + "type":"text", + "text":"Besturingsmodel (H4.1)", + "styleAttributes":{}, + "x":-50, + "y":-440, + "width":340, + "height":80 + }, + { + "id":"a36ad925134021b2", + "type":"text", + "text":"Management Workshop\n(H7.3, A6.3, A6.9)", + "styleAttributes":{}, + "x":320, + "y":-440, + "width":340, + "height":80 + }, + { + "id":"2706559829c7a060", + "type":"text", + "text":"Risicobereidheid (H6.1.2)", + "styleAttributes":{}, + "x":-420, + "y":-440, + "width":340, + "height":80 + }, + { + "id":"1f0798149501d740", + "type":"text", + "text":"Bepalen Doelstellingen (H6.2)", + "styleAttributes":{}, + "x":-420, + "y":-540, + "width":340, + "height":80 + }, + { + "id":"f0b8fe39fe16ba4e", + "type":"text", + "text":"Bepalen Scope (H4.3)", + "styleAttributes":{}, + "x":-50, + "y":-540, + "width":340, + "height":80 + }, + { + "id":"6a322f5cf5bd3f6a", + "type":"text", + "text":"Informatiebeveiligingsbeleid (H5.2)", + "styleAttributes":{}, + "x":320, + "y":-540, + "width":340, + "height":80 + }, + { + "id":"549f8f6976e2591a", + "type":"text", + "text":"Documentatie (H7.5.2)", + "styleAttributes":{}, + "x":-60, + "y":1840, + "width":280, + "height":80 + }, + { + "id":"a2d22052ff7096c5", + "type":"text", + "text":"Review kalender (H7.5.2)", + "styleAttributes":{}, + "x":-60, + "y":1940, + "width":280, + "height":80 + }, + { + "id":"0968542472225677", + "type":"text", + "text":"Communicatieplan (H7.4)", + "styleAttributes":{}, + "x":-60, + "y":2040, + "width":280, + "height":80 + }, + { + "id":"273d40cfef57c393", + "type":"text", + "text":"Audits en Reviews (H9.2, A.5.35-36)", + "styleAttributes":{}, + "x":320, + "y":1840, + "width":280, + "height":80 + }, + { + "id":"28b11a96eef5c2b0", + "type":"text", + "text":"Management Review (H9.3)", + "styleAttributes":{}, + "x":320, + "y":1940, + "width":280, + "height":80 + }, + { + "id":"0a5dc3ad69ffafc2", + "type":"text", + "text":"Beschikbaarstellen Middelen (H7.1)", + "styleAttributes":{}, + "x":-440, + "y":1840, + "width":280, + "height":80 + }, + { + "id":"1e34a0d420b8cfcd", + "type":"text", + "text":"Competenties (H7.2)", + "styleAttributes":{}, + "x":-440, + "y":1940, + "width":280, + "height":80 + }, + { + "id":"13dcb395f4d8f739", + "type":"text", + "text":"Afwijkingen en Correcties (H10.1)", + "styleAttributes":{}, + "x":320, + "y":2040, + "width":280, + "height":80 + }, + { + "id":"d5be08d2d1baa414", + "type":"text", + "text":"Toegangsbeleid\n(A5.15-18, A8.2-5)", + "styleAttributes":{}, + "x":-420, + "y":1344, + "width":340, + "height":80 + }, + { + "id":"314b04a8959f6fb5", + "type":"text", + "text":"Device management\n(A7.9-7.10, A8.1, 8.7)", + "styleAttributes":{}, + "x":-420, + "y":1445, + "width":340, + "height":90 + }, + { + "id":"572c91765b41f7f3", + "type":"text", + "text":"Selectie en implementatie van technologie (A5.8, A5.23, A8.26-33, A.5.38-39, A7.13-14)", + "styleAttributes":{}, + "x":-40, + "y":1344, + "width":340, + "height":80 + }, + { + "id":"79a0be9c6f598831", + "type":"text", + "text":"Leveranciersmanagement (A5.19-A5.23, A8.29)", + "styleAttributes":{}, + "x":320, + "y":1344, + "width":340, + "height":80 + }, + { + "id":"68a6efa1a776c676", + "type":"text", + "text":"Fysieke beveiliging\n(A7.1-7.8, 7.12)", + "styleAttributes":{}, + "x":-40, + "y":1445, + "width":340, + "height":90 + }, + { + "id":"d3b8c88bc841e209", + "type":"text", + "text":"Business Impact Analyse (A5.29-5.30)", + "styleAttributes":{}, + "x":-40, + "y":1120, + "width":340, + "height":80 + }, + { + "id":"853301ab7242b5ef", + "type":"text", + "text":"Gebruikersbeleid\n(A5.10-14, A5.37, A5.40, A6.7-6.8, A7.7, A8.24)", + "styleAttributes":{}, + "x":-40, + "y":1235, + "width":340, + "height":80 + }, + { + "id":"1e6b25bf6dcb833e", + "type":"text", + "text":"BedrijfscontinuΓ―teitsplan (A5.29-5.30, A5.42, A7.11)", + "styleAttributes":{}, + "x":320, + "y":1120, + "width":340, + "height":80 + }, + { + "id":"94c365431ffd100e", + "type":"text", + "text":"Bewustzijn en training\n(H7.3, A6.3)", + "styleAttributes":{}, + "x":320, + "y":1235, + "width":340, + "height":80 + }, + { + "id":"eaa3c32d191b350e", + "type":"text", + "text":"Personeelsbeleid\n(A6.1-6.6)", + "styleAttributes":{}, + "x":-420, + "y":1235, + "width":340, + "height":80 + }, + { + "id":"4184e9e168fd5fdf", + "type":"text", + "text":"Beleid overige maatregelen (A5.1)", + "styleAttributes":{}, + "x":-420, + "y":1565, + "width":340, + "height":90 + }, + { + "id":"6273a5aafc2f54d2", + "type":"text", + "text":"ICT Beheer (A8.7-8.35)", + "styleAttributes":{}, + "x":320, + "y":1445, + "width":340, + "height":90 + }, + { + "id":"360024c970e70d34", + "type":"text", + "text":"Implementatie maatregelen (H8.3)", + "styleAttributes":{"textAlign":"center"}, + "x":-40, + "y":1565, + "width":700, + "height":90 + }, + { + "id":"ff8f4d59b9462109", + "type":"text", + "text":"Incidentenbeheer \n(A5.24-29, A5.43, A6.8)", + "styleAttributes":{}, + "x":-420, + "y":1120, + "width":340, + "height":80 + }, + { + "id":"8cf31932e32c4d1c", + "type":"text", + "text":"Continue verbetering (H10.1)", + "styleAttributes":{"textAlign":"center"}, + "x":-408, + "y":880, + "width":1068, + "height":60 + }, + {"id":"ddfc9917c2c7fc66","type":"file","file":"iso27diy-corp/Corpus/Attachments/Canvas Cyclus.png","x":-408,"y":620,"width":278,"height":200}, + {"id":"27d02011ccccb4c0","type":"file","file":"iso27diy-corp/Corpus/Attachments/Canvas Cyclus.png","x":-19,"y":620,"width":278,"height":200}, + {"id":"6c394a4088d586b3","type":"file","file":"iso27diy-corp/Corpus/Attachments/Canvas Cyclus.png","x":382,"y":620,"width":278,"height":200} + ], + "edges":[], + "metadata":{ + "version":"1.0-1.0", + "frontmatter":{} + } +} \ No newline at end of file diff --git a/🏭 Clients/Gastenhuis/Gastenhuis Projectaanpak.canvas copy b/Clients/Gastenhuis/Gastenhuis Projectaanpak.canvas copy similarity index 100% rename from 🏭 Clients/Gastenhuis/Gastenhuis Projectaanpak.canvas copy rename to Clients/Gastenhuis/Gastenhuis Projectaanpak.canvas copy diff --git a/🏭 Clients/Gastenhuis/Gastenhuis kennismaking.md b/Clients/Gastenhuis/Gastenhuis kennismaking.md similarity index 100% rename from 🏭 Clients/Gastenhuis/Gastenhuis kennismaking.md rename to Clients/Gastenhuis/Gastenhuis kennismaking.md diff --git a/🏭 Clients/Gastenhuis/Voorstel Gastenhuis.md b/Clients/Gastenhuis/Voorstel Gastenhuis.md similarity index 100% rename from 🏭 Clients/Gastenhuis/Voorstel Gastenhuis.md rename to Clients/Gastenhuis/Voorstel Gastenhuis.md diff --git a/🏭 Clients/Humankind/240827 Gesprek Robin Alma.pdf b/Clients/Humankind/240827 Gesprek Robin Alma.pdf similarity index 100% rename from 🏭 Clients/Humankind/240827 Gesprek Robin Alma.pdf rename to Clients/Humankind/240827 Gesprek Robin Alma.pdf diff --git a/🏭 Clients/Humankind/241202 Risico inventarisatie Humankind.docx b/Clients/Humankind/241202 Risico inventarisatie Humankind.docx similarity index 100% rename from 🏭 Clients/Humankind/241202 Risico inventarisatie Humankind.docx rename to Clients/Humankind/241202 Risico inventarisatie Humankind.docx diff --git a/🏭 Clients/Humankind/241204 Acties uit Risico inventarisatie Humankind.csv b/Clients/Humankind/241204 Acties uit Risico inventarisatie Humankind.csv similarity index 100% rename from 🏭 Clients/Humankind/241204 Acties uit Risico inventarisatie Humankind.csv rename to Clients/Humankind/241204 Acties uit Risico inventarisatie Humankind.csv diff --git a/🏭 Clients/Humankind/24203 - Montese - Management Samenvatting - 20241220.pdf b/Clients/Humankind/24203 - Montese - Management Samenvatting - 20241220.pdf similarity index 100% rename from 🏭 Clients/Humankind/24203 - Montese - Management Samenvatting - 20241220.pdf rename to Clients/Humankind/24203 - Montese - Management Samenvatting - 20241220.pdf diff --git a/🏭 Clients/Humankind/24203 - Montese - Rapportage - 20241220.pdf b/Clients/Humankind/24203 - Montese - Rapportage - 20241220.pdf similarity index 100% rename from 🏭 Clients/Humankind/24203 - Montese - Rapportage - 20241220.pdf rename to Clients/Humankind/24203 - Montese - Rapportage - 20241220.pdf diff --git a/🏭 Clients/Humankind/250321 Appendix Selectie en implementatie van Technologie.docx b/Clients/Humankind/250321 Appendix Selectie en implementatie van Technologie.docx similarity index 100% rename from 🏭 Clients/Humankind/250321 Appendix Selectie en implementatie van Technologie.docx rename to Clients/Humankind/250321 Appendix Selectie en implementatie van Technologie.docx diff --git a/🏭 Clients/Humankind/250321 Selectie en implementatie van Technologie.docx b/Clients/Humankind/250321 Selectie en implementatie van Technologie.docx similarity index 100% rename from 🏭 Clients/Humankind/250321 Selectie en implementatie van Technologie.docx rename to Clients/Humankind/250321 Selectie en implementatie van Technologie.docx diff --git a/🏭 Clients/Humankind/Aanbieding HK Calculatie.numbers b/Clients/Humankind/Aanbieding HK Calculatie.numbers similarity index 100% rename from 🏭 Clients/Humankind/Aanbieding HK Calculatie.numbers rename to Clients/Humankind/Aanbieding HK Calculatie.numbers diff --git a/🏭 Clients/Humankind/Aanbiedingen van leveranciers pentest Humankind.md b/Clients/Humankind/Aanbiedingen van leveranciers pentest Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Aanbiedingen van leveranciers pentest Humankind.md rename to Clients/Humankind/Aanbiedingen van leveranciers pentest Humankind.md diff --git a/🏭 Clients/Humankind/Actielijst Risico inventarisatie Humankind.md b/Clients/Humankind/Actielijst Risico inventarisatie Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Actielijst Risico inventarisatie Humankind.md rename to Clients/Humankind/Actielijst Risico inventarisatie Humankind.md diff --git a/🏭 Clients/Humankind/Appendix Selectie en implementatie van Technologie.docx b/Clients/Humankind/Appendix Selectie en implementatie van Technologie.docx similarity index 100% rename from 🏭 Clients/Humankind/Appendix Selectie en implementatie van Technologie.docx rename to Clients/Humankind/Appendix Selectie en implementatie van Technologie.docx diff --git a/🏭 Clients/Humankind/Architectuurprincipes Humankind 2024.pdf b/Clients/Humankind/Architectuurprincipes Humankind 2024.pdf similarity index 100% rename from 🏭 Clients/Humankind/Architectuurprincipes Humankind 2024.pdf rename to Clients/Humankind/Architectuurprincipes Humankind 2024.pdf diff --git a/🏭 Clients/Humankind/Autorisatiematrix HK.md b/Clients/Humankind/Autorisatiematrix HK.md similarity index 100% rename from 🏭 Clients/Humankind/Autorisatiematrix HK.md rename to Clients/Humankind/Autorisatiematrix HK.md diff --git a/🏭 Clients/Humankind/Autorisatiematrix.xlsx b/Clients/Humankind/Autorisatiematrix.xlsx similarity index 100% rename from 🏭 Clients/Humankind/Autorisatiematrix.xlsx rename to Clients/Humankind/Autorisatiematrix.xlsx diff --git a/🏭 Clients/Humankind/BIA HK.xlsx b/Clients/Humankind/BIA HK.xlsx similarity index 100% rename from 🏭 Clients/Humankind/BIA HK.xlsx rename to Clients/Humankind/BIA HK.xlsx diff --git a/🏭 Clients/Humankind/BIA en DRP Sessies HK.md b/Clients/Humankind/BIA en DRP Sessies HK.md similarity index 100% rename from 🏭 Clients/Humankind/BIA en DRP Sessies HK.md rename to Clients/Humankind/BIA en DRP Sessies HK.md diff --git a/🏭 Clients/Humankind/BedrijfscontinuΓ―teitsplan Humankind.md b/Clients/Humankind/BedrijfscontinuΓ―teitsplan Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/BedrijfscontinuΓ―teitsplan Humankind.md rename to Clients/Humankind/BedrijfscontinuΓ―teitsplan Humankind.md diff --git a/🏭 Clients/Humankind/Bedrijfsfuncties en Applicaties.xlsx b/Clients/Humankind/Bedrijfsfuncties en Applicaties.xlsx similarity index 100% rename from 🏭 Clients/Humankind/Bedrijfsfuncties en Applicaties.xlsx rename to Clients/Humankind/Bedrijfsfuncties en Applicaties.xlsx diff --git a/🏭 Clients/Humankind/Beleid voor Gebruik van SaaS HK.md b/Clients/Humankind/Beleid voor Gebruik van SaaS HK.md similarity index 100% rename from 🏭 Clients/Humankind/Beleid voor Gebruik van SaaS HK.md rename to Clients/Humankind/Beleid voor Gebruik van SaaS HK.md diff --git a/🏭 Clients/Humankind/Benoemde risico's Humankind.md b/Clients/Humankind/Benoemde risico's Humankind.md similarity index 88% rename from 🏭 Clients/Humankind/Benoemde risico's Humankind.md rename to Clients/Humankind/Benoemde risico's Humankind.md index f9abde2..87436ec 100644 --- a/🏭 Clients/Humankind/Benoemde risico's Humankind.md +++ b/Clients/Humankind/Benoemde risico's Humankind.md @@ -1,7 +1,7 @@ In gesprekken benoemde risico's Opnemen in Risico Register -Zie [Risk Register Format](../../Corpus/πŸŽ‡%20Sparks/Risk%20Register%20Format.md) +Zie [Risk Register Format](../../Corpus/Sparks/Risk%20Register%20Format.md) - Belangrijkste risico’s zitten bij email en gebruik van Teams (gastaccounts, policies, etc.), daarover komen de meeste incidentmeldingen. – 80% van de attack vectors lopen via mail. diff --git a/🏭 Clients/Humankind/Besturingsmodel informatiebeveiliging Humankind.md b/Clients/Humankind/Besturingsmodel informatiebeveiliging Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Besturingsmodel informatiebeveiliging Humankind.md rename to Clients/Humankind/Besturingsmodel informatiebeveiliging Humankind.md diff --git a/🏭 Clients/Humankind/Big RASCI matrix Humankind.md b/Clients/Humankind/Big RASCI matrix Humankind.md similarity index 94% rename from 🏭 Clients/Humankind/Big RASCI matrix Humankind.md rename to Clients/Humankind/Big RASCI matrix Humankind.md index c5da87f..6b8e260 100644 --- a/🏭 Clients/Humankind/Big RASCI matrix Humankind.md +++ b/Clients/Humankind/Big RASCI matrix Humankind.md @@ -6,7 +6,7 @@ | Opstellen van beleid | | | | | | | Goedkeuren van beleid | | | | | | | Vertalen van beleid | | | | | | -Voor legenda zie [RASCI Matrix](../../Corpus/πŸŽ‡%20Sparks/RASCI%20Matrix.md) +Voor legenda zie [RASCI Matrix](../../Corpus/Sparks/RASCI%20Matrix.md) **Management** - eindverantwoordelijk voor IB diff --git a/🏭 Clients/Humankind/Calculatie Humankind uit opdracht 6 juni 2024.md b/Clients/Humankind/Calculatie Humankind uit opdracht 6 juni 2024.md similarity index 92% rename from 🏭 Clients/Humankind/Calculatie Humankind uit opdracht 6 juni 2024.md rename to Clients/Humankind/Calculatie Humankind uit opdracht 6 juni 2024.md index 6a01698..3251d98 100644 --- a/🏭 Clients/Humankind/Calculatie Humankind uit opdracht 6 juni 2024.md +++ b/Clients/Humankind/Calculatie Humankind uit opdracht 6 juni 2024.md @@ -5,7 +5,7 @@ Uit [Opdracht Humankind 6 juni 2024](Opdracht%20Humankind%206%20juni%202024.md) | **DELIVERABLES** | | | | | -------------------------------------------------------------------------------------------------------- | --- | -------- | -------------- | | **Fase I. Randvoorwaarden** | | | | -| [Check op Basisveiligheid](../../Corpus/πŸŽ‡%20Sparks/Check%20op%20Basisveiligheid%20Humankind.md) | | Stelpost | € 15.000 | +| [Check op Basisveiligheid](../../Corpus/Sparks/Check%20op%20Basisveiligheid%20Humankind.md) | | Stelpost | € 15.000 | | [[Management Workshops Humankind\|Management Workshops (2x) β€˜Sturen op Risico’s met de Canvas Methode’]] | | | € 2.400 | | [Vaststellen Leidende principes en doelen](Leidende%20principes%20en%20doelen%20Humankind.md) | 1 | € 1.100 | € 1.100 | | _Totaal (ex. Stelpost)_ | | | **_€ 18.500_** | diff --git a/🏭 Clients/Humankind/CleanShot 2025-06-02 at 16.36.31.png b/Clients/Humankind/CleanShot 2025-06-02 at 16.36.31.png similarity index 100% rename from 🏭 Clients/Humankind/CleanShot 2025-06-02 at 16.36.31.png rename to Clients/Humankind/CleanShot 2025-06-02 at 16.36.31.png diff --git a/🏭 Clients/Humankind/Contractvoorwaarden voor leveranciers HK.md b/Clients/Humankind/Contractvoorwaarden voor leveranciers HK.md similarity index 100% rename from 🏭 Clients/Humankind/Contractvoorwaarden voor leveranciers HK.md rename to Clients/Humankind/Contractvoorwaarden voor leveranciers HK.md diff --git a/🏭 Clients/Humankind/Dataclassificatie Humankind 20250502.xlsx b/Clients/Humankind/Dataclassificatie Humankind 20250502.xlsx similarity index 100% rename from 🏭 Clients/Humankind/Dataclassificatie Humankind 20250502.xlsx rename to Clients/Humankind/Dataclassificatie Humankind 20250502.xlsx diff --git a/🏭 Clients/Humankind/Dataclassificatie Humankind 20250515.xlsx b/Clients/Humankind/Dataclassificatie Humankind 20250515.xlsx similarity index 100% rename from 🏭 Clients/Humankind/Dataclassificatie Humankind 20250515.xlsx rename to Clients/Humankind/Dataclassificatie Humankind 20250515.xlsx diff --git a/🏭 Clients/Humankind/Dataclassificatie Humankind.md b/Clients/Humankind/Dataclassificatie Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Dataclassificatie Humankind.md rename to Clients/Humankind/Dataclassificatie Humankind.md diff --git a/🏭 Clients/Humankind/Destillatie leidende principes Humankind.md b/Clients/Humankind/Destillatie leidende principes Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Destillatie leidende principes Humankind.md rename to Clients/Humankind/Destillatie leidende principes Humankind.md diff --git a/🏭 Clients/Humankind/Digitaal gebruikersbeleid Humankind.pdf b/Clients/Humankind/Digitaal gebruikersbeleid Humankind.pdf similarity index 100% rename from 🏭 Clients/Humankind/Digitaal gebruikersbeleid Humankind.pdf rename to Clients/Humankind/Digitaal gebruikersbeleid Humankind.pdf diff --git a/🏭 Clients/Humankind/EightFence intakeformulier 240808.docx b/Clients/Humankind/EightFence intakeformulier 240808.docx similarity index 100% rename from 🏭 Clients/Humankind/EightFence intakeformulier 240808.docx rename to Clients/Humankind/EightFence intakeformulier 240808.docx diff --git a/🏭 Clients/Humankind/EightFence intakeformulier BLANCO.docx b/Clients/Humankind/EightFence intakeformulier BLANCO.docx similarity index 100% rename from 🏭 Clients/Humankind/EightFence intakeformulier BLANCO.docx rename to Clients/Humankind/EightFence intakeformulier BLANCO.docx diff --git a/🏭 Clients/Humankind/Eisen aan ICT oplossingen uit de Architectuurprincipes Humankind.md b/Clients/Humankind/Eisen aan ICT oplossingen uit de Architectuurprincipes Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Eisen aan ICT oplossingen uit de Architectuurprincipes Humankind.md rename to Clients/Humankind/Eisen aan ICT oplossingen uit de Architectuurprincipes Humankind.md diff --git a/🏭 Clients/Humankind/Eisen aan leveranciers en samenwerking uit de Architectuurprincipes Humankind.md b/Clients/Humankind/Eisen aan leveranciers en samenwerking uit de Architectuurprincipes Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Eisen aan leveranciers en samenwerking uit de Architectuurprincipes Humankind.md rename to Clients/Humankind/Eisen aan leveranciers en samenwerking uit de Architectuurprincipes Humankind.md diff --git a/🏭 Clients/Humankind/Gebruik van Software-as-a-Service 250529.docx b/Clients/Humankind/Gebruik van Software-as-a-Service 250529.docx similarity index 100% rename from 🏭 Clients/Humankind/Gebruik van Software-as-a-Service 250529.docx rename to Clients/Humankind/Gebruik van Software-as-a-Service 250529.docx diff --git a/🏭 Clients/Humankind/Gesprek met Robin Alma Humankind 240827.md b/Clients/Humankind/Gesprek met Robin Alma Humankind 240827.md similarity index 100% rename from 🏭 Clients/Humankind/Gesprek met Robin Alma Humankind 240827.md rename to Clients/Humankind/Gesprek met Robin Alma Humankind 240827.md diff --git a/🏭 Clients/Humankind/Governance in Architectuurprincipes Humankind.md b/Clients/Humankind/Governance in Architectuurprincipes Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Governance in Architectuurprincipes Humankind.md rename to Clients/Humankind/Governance in Architectuurprincipes Humankind.md diff --git a/🏭 Clients/Humankind/Herijking project 14 november 2024.md b/Clients/Humankind/Herijking project 14 november 2024.md similarity index 100% rename from 🏭 Clients/Humankind/Herijking project 14 november 2024.md rename to Clients/Humankind/Herijking project 14 november 2024.md diff --git a/🏭 Clients/Humankind/Herijking project informatiebeveiliging Humankind november 2024.docx b/Clients/Humankind/Herijking project informatiebeveiliging Humankind november 2024.docx similarity index 100% rename from 🏭 Clients/Humankind/Herijking project informatiebeveiliging Humankind november 2024.docx rename to Clients/Humankind/Herijking project informatiebeveiliging Humankind november 2024.docx diff --git a/🏭 Clients/Humankind/Humankind project inhuizen Servicedesk.md b/Clients/Humankind/Humankind project inhuizen Servicedesk.md similarity index 100% rename from 🏭 Clients/Humankind/Humankind project inhuizen Servicedesk.md rename to Clients/Humankind/Humankind project inhuizen Servicedesk.md diff --git a/🏭 Clients/Humankind/Informatiebeveiligingsbeleid Humankind.docx b/Clients/Humankind/Informatiebeveiligingsbeleid Humankind.docx similarity index 100% rename from 🏭 Clients/Humankind/Informatiebeveiligingsbeleid Humankind.docx rename to Clients/Humankind/Informatiebeveiligingsbeleid Humankind.docx diff --git a/🏭 Clients/Humankind/Informatiebeveiligingsbeleid Humankind.md b/Clients/Humankind/Informatiebeveiligingsbeleid Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Informatiebeveiligingsbeleid Humankind.md rename to Clients/Humankind/Informatiebeveiligingsbeleid Humankind.md diff --git a/🏭 Clients/Humankind/Informatiematrix.xlsx b/Clients/Humankind/Informatiematrix.xlsx similarity index 100% rename from 🏭 Clients/Humankind/Informatiematrix.xlsx rename to Clients/Humankind/Informatiematrix.xlsx diff --git a/🏭 Clients/Humankind/Inleiding leveranciersmanagement HK.md b/Clients/Humankind/Inleiding leveranciersmanagement HK.md similarity index 100% rename from 🏭 Clients/Humankind/Inleiding leveranciersmanagement HK.md rename to Clients/Humankind/Inleiding leveranciersmanagement HK.md diff --git a/🏭 Clients/Humankind/Kenmerken Humankind.md b/Clients/Humankind/Kenmerken Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Kenmerken Humankind.md rename to Clients/Humankind/Kenmerken Humankind.md diff --git a/🏭 Clients/Humankind/Leidende principes en doelen Humankind.md b/Clients/Humankind/Leidende principes en doelen Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Leidende principes en doelen Humankind.md rename to Clients/Humankind/Leidende principes en doelen Humankind.md diff --git a/🏭 Clients/Humankind/Lijst Contractvoorwaarden HK.md b/Clients/Humankind/Lijst Contractvoorwaarden HK.md similarity index 100% rename from 🏭 Clients/Humankind/Lijst Contractvoorwaarden HK.md rename to Clients/Humankind/Lijst Contractvoorwaarden HK.md diff --git a/🏭 Clients/Humankind/Lijst Eisen aan leveranciers HK.md b/Clients/Humankind/Lijst Eisen aan leveranciers HK.md similarity index 97% rename from 🏭 Clients/Humankind/Lijst Eisen aan leveranciers HK.md rename to Clients/Humankind/Lijst Eisen aan leveranciers HK.md index 7e51dd8..d3c5958 100644 --- a/🏭 Clients/Humankind/Lijst Eisen aan leveranciers HK.md +++ b/Clients/Humankind/Lijst Eisen aan leveranciers HK.md @@ -1,5 +1,5 @@ Deze tekst is gebaseerd op: -- [Programma van Eisen Ubeoo ATS](../../Corpus/πŸ“Ž%20Attachments/Ubeeo%20ATS%20PvE%20240315.xlsx) +- [Programma van Eisen Ubeoo ATS](../../Corpus/Attachments/Ubeeo%20ATS%20PvE%20240315.xlsx) - [Eisen aan leveranciers en samenwerking uit de Architectuurprincipes Humankind](Eisen%20aan%20leveranciers%20en%20samenwerking%20uit%20de%20Architectuurprincipes%20Humankind.md) # Basislijst Eisen en Wensen ICT leveranciers diff --git a/🏭 Clients/Humankind/Lijst Eisen en Wensen ICT oplossingen HK.md b/Clients/Humankind/Lijst Eisen en Wensen ICT oplossingen HK.md similarity index 100% rename from 🏭 Clients/Humankind/Lijst Eisen en Wensen ICT oplossingen HK.md rename to Clients/Humankind/Lijst Eisen en Wensen ICT oplossingen HK.md diff --git a/🏭 Clients/Humankind/Management samenvatting pentest Humankind door NFIR.md b/Clients/Humankind/Management samenvatting pentest Humankind door NFIR.md similarity index 100% rename from 🏭 Clients/Humankind/Management samenvatting pentest Humankind door NFIR.md rename to Clients/Humankind/Management samenvatting pentest Humankind door NFIR.md diff --git a/🏭 Clients/Humankind/Management samenvatting pentest Humankind door RK.md b/Clients/Humankind/Management samenvatting pentest Humankind door RK.md similarity index 100% rename from 🏭 Clients/Humankind/Management samenvatting pentest Humankind door RK.md rename to Clients/Humankind/Management samenvatting pentest Humankind door RK.md diff --git a/🏭 Clients/Humankind/NFIR BV_Offerte CIS Controls_Humankind_20241009.pdf b/Clients/Humankind/NFIR BV_Offerte CIS Controls_Humankind_20241009.pdf similarity index 100% rename from 🏭 Clients/Humankind/NFIR BV_Offerte CIS Controls_Humankind_20241009.pdf rename to Clients/Humankind/NFIR BV_Offerte CIS Controls_Humankind_20241009.pdf diff --git a/🏭 Clients/Humankind/NFIR BV_Offerte Pentest_Humankind_20241023.pdf b/Clients/Humankind/NFIR BV_Offerte Pentest_Humankind_20241023.pdf similarity index 100% rename from 🏭 Clients/Humankind/NFIR BV_Offerte Pentest_Humankind_20241023.pdf rename to Clients/Humankind/NFIR BV_Offerte Pentest_Humankind_20241023.pdf diff --git a/🏭 Clients/Humankind/NFIR BV_Vrijwaringsverklaring_Humankind_20241023.pdf b/Clients/Humankind/NFIR BV_Vrijwaringsverklaring_Humankind_20241023.pdf similarity index 100% rename from 🏭 Clients/Humankind/NFIR BV_Vrijwaringsverklaring_Humankind_20241023.pdf rename to Clients/Humankind/NFIR BV_Vrijwaringsverklaring_Humankind_20241023.pdf diff --git a/🏭 Clients/Humankind/NFIR CIS Critical Security Controls_v8.pdf b/Clients/Humankind/NFIR CIS Critical Security Controls_v8.pdf similarity index 100% rename from 🏭 Clients/Humankind/NFIR CIS Critical Security Controls_v8.pdf rename to Clients/Humankind/NFIR CIS Critical Security Controls_v8.pdf diff --git a/🏭 Clients/Humankind/NFIR Penetration Testing Execution Standard (PTES) (4).pdf b/Clients/Humankind/NFIR Penetration Testing Execution Standard (PTES) (4).pdf similarity index 100% rename from 🏭 Clients/Humankind/NFIR Penetration Testing Execution Standard (PTES) (4).pdf rename to Clients/Humankind/NFIR Penetration Testing Execution Standard (PTES) (4).pdf diff --git a/🏭 Clients/Humankind/NFIR Pentest - Voorbeeld Rapportage Webapplicatie - 2024-06-11 (2).pdf b/Clients/Humankind/NFIR Pentest - Voorbeeld Rapportage Webapplicatie - 2024-06-11 (2).pdf similarity index 100% rename from 🏭 Clients/Humankind/NFIR Pentest - Voorbeeld Rapportage Webapplicatie - 2024-06-11 (2).pdf rename to Clients/Humankind/NFIR Pentest - Voorbeeld Rapportage Webapplicatie - 2024-06-11 (2).pdf diff --git a/🏭 Clients/Humankind/NFIR pentest presentatie.pdf b/Clients/Humankind/NFIR pentest presentatie.pdf similarity index 100% rename from 🏭 Clients/Humankind/NFIR pentest presentatie.pdf rename to Clients/Humankind/NFIR pentest presentatie.pdf diff --git a/🏭 Clients/Humankind/NIS 2 voor Humankind.docx b/Clients/Humankind/NIS 2 voor Humankind.docx similarity index 100% rename from 🏭 Clients/Humankind/NIS 2 voor Humankind.docx rename to Clients/Humankind/NIS 2 voor Humankind.docx diff --git a/🏭 Clients/Humankind/NIS 2 voor Humankind.md b/Clients/Humankind/NIS 2 voor Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/NIS 2 voor Humankind.md rename to Clients/Humankind/NIS 2 voor Humankind.md diff --git a/🏭 Clients/Humankind/NIS 2 voor Humankind.pdf b/Clients/Humankind/NIS 2 voor Humankind.pdf similarity index 100% rename from 🏭 Clients/Humankind/NIS 2 voor Humankind.pdf rename to Clients/Humankind/NIS 2 voor Humankind.pdf diff --git a/🏭 Clients/Humankind/Offboarding ICT leveranciers HK.md b/Clients/Humankind/Offboarding ICT leveranciers HK.md similarity index 100% rename from 🏭 Clients/Humankind/Offboarding ICT leveranciers HK.md rename to Clients/Humankind/Offboarding ICT leveranciers HK.md diff --git a/🏭 Clients/Humankind/Onboarding van leveranciers HK.md b/Clients/Humankind/Onboarding van leveranciers HK.md similarity index 100% rename from 🏭 Clients/Humankind/Onboarding van leveranciers HK.md rename to Clients/Humankind/Onboarding van leveranciers HK.md diff --git a/🏭 Clients/Humankind/Opdracht Humankind 6 juni 2024.md b/Clients/Humankind/Opdracht Humankind 6 juni 2024.md similarity index 94% rename from 🏭 Clients/Humankind/Opdracht Humankind 6 juni 2024.md rename to Clients/Humankind/Opdracht Humankind 6 juni 2024.md index d143624..b756a23 100644 --- a/🏭 Clients/Humankind/Opdracht Humankind 6 juni 2024.md +++ b/Clients/Humankind/Opdracht Humankind 6 juni 2024.md @@ -14,7 +14,7 @@ Uitdagingen: ### Fase 1 – Randvoorwaarden scheppen voor ontwikkeling A. Voorzien in basisveiligheid door: -- [Check op Basisveiligheid](../../Corpus/πŸŽ‡%20Sparks/Check%20op%20Basisveiligheid%20Humankind.md) door een onafhankelijke Partij +- [Check op Basisveiligheid](../../Corpus/Sparks/Check%20op%20Basisveiligheid%20Humankind.md) door een onafhankelijke Partij - Bescherming tegen actuele externe dreigingen - [[Verzekering beschikbaarheid Humankind|Verzekering beschikbaarheid]]: - Backups en noodvoorzieningen diff --git a/🏭 Clients/Humankind/Opdracht Humankind aan TSW Fase 1 en 2 GETEKEND.pdf b/Clients/Humankind/Opdracht Humankind aan TSW Fase 1 en 2 GETEKEND.pdf similarity index 100% rename from 🏭 Clients/Humankind/Opdracht Humankind aan TSW Fase 1 en 2 GETEKEND.pdf rename to Clients/Humankind/Opdracht Humankind aan TSW Fase 1 en 2 GETEKEND.pdf diff --git a/🏭 Clients/Humankind/Operationele fase HK.md b/Clients/Humankind/Operationele fase HK.md similarity index 100% rename from 🏭 Clients/Humankind/Operationele fase HK.md rename to Clients/Humankind/Operationele fase HK.md diff --git a/🏭 Clients/Humankind/OrgFit Afspraken Procesmanagement Humankind.md b/Clients/Humankind/OrgFit Afspraken Procesmanagement Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/OrgFit Afspraken Procesmanagement Humankind.md rename to Clients/Humankind/OrgFit Afspraken Procesmanagement Humankind.md diff --git a/🏭 Clients/Humankind/OrgFit Architectuurprincipes Humankind.md b/Clients/Humankind/OrgFit Architectuurprincipes Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/OrgFit Architectuurprincipes Humankind.md rename to Clients/Humankind/OrgFit Architectuurprincipes Humankind.md diff --git a/🏭 Clients/Humankind/OrgFit Autorisatiematrix Humankind.md b/Clients/Humankind/OrgFit Autorisatiematrix Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/OrgFit Autorisatiematrix Humankind.md rename to Clients/Humankind/OrgFit Autorisatiematrix Humankind.md diff --git a/🏭 Clients/Humankind/OrgFit Bedrijfsfuncties en Applicaties Humankind.md b/Clients/Humankind/OrgFit Bedrijfsfuncties en Applicaties Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/OrgFit Bedrijfsfuncties en Applicaties Humankind.md rename to Clients/Humankind/OrgFit Bedrijfsfuncties en Applicaties Humankind.md diff --git a/🏭 Clients/Humankind/OrgFit Informatiematrix Humankind.md b/Clients/Humankind/OrgFit Informatiematrix Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/OrgFit Informatiematrix Humankind.md rename to Clients/Humankind/OrgFit Informatiematrix Humankind.md diff --git a/🏭 Clients/Humankind/OrgFit Processenhuis Humankind.md b/Clients/Humankind/OrgFit Processenhuis Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/OrgFit Processenhuis Humankind.md rename to Clients/Humankind/OrgFit Processenhuis Humankind.md diff --git a/🏭 Clients/Humankind/OrgFit stukken Humankind.md b/Clients/Humankind/OrgFit stukken Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/OrgFit stukken Humankind.md rename to Clients/Humankind/OrgFit stukken Humankind.md diff --git a/🏭 Clients/Humankind/Pentest Humankind door NFIR.md b/Clients/Humankind/Pentest Humankind door NFIR.md similarity index 100% rename from 🏭 Clients/Humankind/Pentest Humankind door NFIR.md rename to Clients/Humankind/Pentest Humankind door NFIR.md diff --git a/🏭 Clients/Humankind/Pentest Humankind.md b/Clients/Humankind/Pentest Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Pentest Humankind.md rename to Clients/Humankind/Pentest Humankind.md diff --git a/🏭 Clients/Humankind/Presentatie voor bestuur Humankind.md b/Clients/Humankind/Presentatie voor bestuur Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Presentatie voor bestuur Humankind.md rename to Clients/Humankind/Presentatie voor bestuur Humankind.md diff --git a/🏭 Clients/Humankind/Prioriteit beleidsvorming 23 januari 2025.md b/Clients/Humankind/Prioriteit beleidsvorming 23 januari 2025.md similarity index 100% rename from 🏭 Clients/Humankind/Prioriteit beleidsvorming 23 januari 2025.md rename to Clients/Humankind/Prioriteit beleidsvorming 23 januari 2025.md diff --git a/🏭 Clients/Humankind/Procedure Digitaal gebruikersbeleid HK.md b/Clients/Humankind/Procedure Digitaal gebruikersbeleid HK.md similarity index 100% rename from 🏭 Clients/Humankind/Procedure Digitaal gebruikersbeleid HK.md rename to Clients/Humankind/Procedure Digitaal gebruikersbeleid HK.md diff --git a/🏭 Clients/Humankind/Processenhuis HK 2024Q1.pdf b/Clients/Humankind/Processenhuis HK 2024Q1.pdf similarity index 100% rename from 🏭 Clients/Humankind/Processenhuis HK 2024Q1.pdf rename to Clients/Humankind/Processenhuis HK 2024Q1.pdf diff --git a/🏭 Clients/Humankind/Projectfase HK.md b/Clients/Humankind/Projectfase HK.md similarity index 100% rename from 🏭 Clients/Humankind/Projectfase HK.md rename to Clients/Humankind/Projectfase HK.md diff --git a/🏭 Clients/Humankind/RASCI matrix Humankind.xlsx b/Clients/Humankind/RASCI matrix Humankind.xlsx similarity index 100% rename from 🏭 Clients/Humankind/RASCI matrix Humankind.xlsx rename to Clients/Humankind/RASCI matrix Humankind.xlsx diff --git a/🏭 Clients/Humankind/Rapportage Risico inventarisatie Humankind.md b/Clients/Humankind/Rapportage Risico inventarisatie Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Rapportage Risico inventarisatie Humankind.md rename to Clients/Humankind/Rapportage Risico inventarisatie Humankind.md diff --git a/🏭 Clients/Humankind/Rapportage pentest Humankind door NFIR.md b/Clients/Humankind/Rapportage pentest Humankind door NFIR.md similarity index 100% rename from 🏭 Clients/Humankind/Rapportage pentest Humankind door NFIR.md rename to Clients/Humankind/Rapportage pentest Humankind door NFIR.md diff --git a/🏭 Clients/Humankind/Risico interview Peter Steijns Humankind.md b/Clients/Humankind/Risico interview Peter Steijns Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Risico interview Peter Steijns Humankind.md rename to Clients/Humankind/Risico interview Peter Steijns Humankind.md diff --git a/🏭 Clients/Humankind/Risico interview Thorsten BonfrΓ¨re Humankind.md b/Clients/Humankind/Risico interview Thorsten BonfrΓ¨re Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Risico interview Thorsten BonfrΓ¨re Humankind.md rename to Clients/Humankind/Risico interview Thorsten BonfrΓ¨re Humankind.md diff --git a/🏭 Clients/Humankind/Risicoanalyse Humankind.md b/Clients/Humankind/Risicoanalyse Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Risicoanalyse Humankind.md rename to Clients/Humankind/Risicoanalyse Humankind.md diff --git a/🏭 Clients/Humankind/Rollen en verantwoordelijkheden uit Architectuurprincipes Humankind.md b/Clients/Humankind/Rollen en verantwoordelijkheden uit Architectuurprincipes Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Rollen en verantwoordelijkheden uit Architectuurprincipes Humankind.md rename to Clients/Humankind/Rollen en verantwoordelijkheden uit Architectuurprincipes Humankind.md diff --git a/🏭 Clients/Humankind/Securesult Presentatie-HumanKind_kort.pdf b/Clients/Humankind/Securesult Presentatie-HumanKind_kort.pdf similarity index 100% rename from 🏭 Clients/Humankind/Securesult Presentatie-HumanKind_kort.pdf rename to Clients/Humankind/Securesult Presentatie-HumanKind_kort.pdf diff --git a/🏭 Clients/Humankind/Securesult Voorstel nulmeting en analyse leveranciersdiensten v1.0.pdf b/Clients/Humankind/Securesult Voorstel nulmeting en analyse leveranciersdiensten v1.0.pdf similarity index 100% rename from 🏭 Clients/Humankind/Securesult Voorstel nulmeting en analyse leveranciersdiensten v1.0.pdf rename to Clients/Humankind/Securesult Voorstel nulmeting en analyse leveranciersdiensten v1.0.pdf diff --git a/🏭 Clients/Humankind/Security in Architectuurprincipes Humankind.md b/Clients/Humankind/Security in Architectuurprincipes Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Security in Architectuurprincipes Humankind.md rename to Clients/Humankind/Security in Architectuurprincipes Humankind.md diff --git a/🏭 Clients/Humankind/Selectie en implementatie van Technologie bij Humankind.md b/Clients/Humankind/Selectie en implementatie van Technologie bij Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Selectie en implementatie van Technologie bij Humankind.md rename to Clients/Humankind/Selectie en implementatie van Technologie bij Humankind.md diff --git a/🏭 Clients/Humankind/Selectie en implementatie van Technologie.docx b/Clients/Humankind/Selectie en implementatie van Technologie.docx similarity index 100% rename from 🏭 Clients/Humankind/Selectie en implementatie van Technologie.docx rename to Clients/Humankind/Selectie en implementatie van Technologie.docx diff --git a/🏭 Clients/Humankind/Selectie van leveranciers HK.md b/Clients/Humankind/Selectie van leveranciers HK.md similarity index 100% rename from 🏭 Clients/Humankind/Selectie van leveranciers HK.md rename to Clients/Humankind/Selectie van leveranciers HK.md diff --git a/🏭 Clients/Humankind/Specificatie van eisen HK.md b/Clients/Humankind/Specificatie van eisen HK.md similarity index 100% rename from 🏭 Clients/Humankind/Specificatie van eisen HK.md rename to Clients/Humankind/Specificatie van eisen HK.md diff --git a/🏭 Clients/Humankind/Structuur Architectuurprincipes Humankind.md b/Clients/Humankind/Structuur Architectuurprincipes Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Structuur Architectuurprincipes Humankind.md rename to Clients/Humankind/Structuur Architectuurprincipes Humankind.md diff --git a/🏭 Clients/Humankind/TLP_Impact_matrix_HK.xlsx b/Clients/Humankind/TLP_Impact_matrix_HK.xlsx similarity index 100% rename from 🏭 Clients/Humankind/TLP_Impact_matrix_HK.xlsx rename to Clients/Humankind/TLP_Impact_matrix_HK.xlsx diff --git a/🏭 Clients/Humankind/Toegangsbeleid Applicaties Humankind.md b/Clients/Humankind/Toegangsbeleid Applicaties Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Toegangsbeleid Applicaties Humankind.md rename to Clients/Humankind/Toegangsbeleid Applicaties Humankind.md diff --git a/🏭 Clients/Humankind/Ubeeo ATS SLA Service Level Agreement.pdf b/Clients/Humankind/Ubeeo ATS SLA Service Level Agreement.pdf similarity index 100% rename from 🏭 Clients/Humankind/Ubeeo ATS SLA Service Level Agreement.pdf rename to Clients/Humankind/Ubeeo ATS SLA Service Level Agreement.pdf diff --git a/Clients/Humankind/Ubeoo ATS vendor selection Humankind.md b/Clients/Humankind/Ubeoo ATS vendor selection Humankind.md new file mode 100644 index 0000000..f92cef8 --- /dev/null +++ b/Clients/Humankind/Ubeoo ATS vendor selection Humankind.md @@ -0,0 +1,4 @@ +- [Programma van Eisen](../../Corpus/Attachments/Ubeeo%20ATS%20PvE%20240315.xlsx) +- [](Ubeeo%20ATS%20SLA%20Service%20Level%20Agreement.pdf) + +![](Ubeeo%20ATS%20SLA%20Service%20Level%20Agreement.pdf) \ No newline at end of file diff --git a/🏭 Clients/Humankind/Uitfasering en contractbeΓ«indiging HK.md b/Clients/Humankind/Uitfasering en contractbeΓ«indiging HK.md similarity index 100% rename from 🏭 Clients/Humankind/Uitfasering en contractbeΓ«indiging HK.md rename to Clients/Humankind/Uitfasering en contractbeΓ«indiging HK.md diff --git a/🏭 Clients/Humankind/Uitvraag leveranciers Pentest Humankind.md b/Clients/Humankind/Uitvraag leveranciers Pentest Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Uitvraag leveranciers Pentest Humankind.md rename to Clients/Humankind/Uitvraag leveranciers Pentest Humankind.md diff --git a/🏭 Clients/Humankind/Vergelijking presentaties pentest 8 oktober 2024.xlsx b/Clients/Humankind/Vergelijking presentaties pentest 8 oktober 2024.xlsx similarity index 100% rename from 🏭 Clients/Humankind/Vergelijking presentaties pentest 8 oktober 2024.xlsx rename to Clients/Humankind/Vergelijking presentaties pentest 8 oktober 2024.xlsx diff --git a/🏭 Clients/Humankind/Voorbeeld BREAD CRUD matrix.xlsx b/Clients/Humankind/Voorbeeld BREAD CRUD matrix.xlsx similarity index 100% rename from 🏭 Clients/Humankind/Voorbeeld BREAD CRUD matrix.xlsx rename to Clients/Humankind/Voorbeeld BREAD CRUD matrix.xlsx diff --git a/🏭 Clients/Humankind/Voorstel Humankind april 2024 v02.pdf b/Clients/Humankind/Voorstel Humankind april 2024 v02.pdf similarity index 100% rename from 🏭 Clients/Humankind/Voorstel Humankind april 2024 v02.pdf rename to Clients/Humankind/Voorstel Humankind april 2024 v02.pdf diff --git a/🏭 Clients/Humankind/Wachtwoordbeleid Humankind.md b/Clients/Humankind/Wachtwoordbeleid Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Wachtwoordbeleid Humankind.md rename to Clients/Humankind/Wachtwoordbeleid Humankind.md diff --git a/🏭 Clients/Humankind/Wachtwoordbeleid voor Humankind.md b/Clients/Humankind/Wachtwoordbeleid voor Humankind.md similarity index 95% rename from 🏭 Clients/Humankind/Wachtwoordbeleid voor Humankind.md rename to Clients/Humankind/Wachtwoordbeleid voor Humankind.md index 3ec1ad1..9c0bd86 100644 --- a/🏭 Clients/Humankind/Wachtwoordbeleid voor Humankind.md +++ b/Clients/Humankind/Wachtwoordbeleid voor Humankind.md @@ -1,7 +1,7 @@ # Wachtwoordbeleid voor Humankind -Gebaseerd op [Sterke wachtwoorden in 2024](../../Corpus/πŸŽ‡%20Sparks/Sterke%20wachtwoorden%20in%202024.md). +Gebaseerd op [Sterke wachtwoorden in 2024](../../Corpus/Sparks/Sterke%20wachtwoorden%20in%202024.md). **Mail 'Sterke wachtwoorden in 2024' d.d. 13 februari 2025** diff --git a/🏭 Clients/Humankind/Workshops Effectiviteit en Volwassenheid Humankind.md b/Clients/Humankind/Workshops Effectiviteit en Volwassenheid Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Workshops Effectiviteit en Volwassenheid Humankind.md rename to Clients/Humankind/Workshops Effectiviteit en Volwassenheid Humankind.md diff --git a/🏭 Clients/Humankind/Workshops Risico's en Maatregelen Humankind.md b/Clients/Humankind/Workshops Risico's en Maatregelen Humankind.md similarity index 100% rename from 🏭 Clients/Humankind/Workshops Risico's en Maatregelen Humankind.md rename to Clients/Humankind/Workshops Risico's en Maatregelen Humankind.md diff --git a/🏭 Clients/Humankind/_Project Humankind kinderopvang MoC.md b/Clients/Humankind/_Project Humankind kinderopvang MoC.md similarity index 100% rename from 🏭 Clients/Humankind/_Project Humankind kinderopvang MoC.md rename to Clients/Humankind/_Project Humankind kinderopvang MoC.md diff --git a/🏭 Clients/Humankind/image002.png b/Clients/Humankind/image002.png similarity index 100% rename from 🏭 Clients/Humankind/image002.png rename to Clients/Humankind/image002.png diff --git a/🏭 Clients/Junis/Veiligheidseisen aan Leveranciers Junis.md b/Clients/Junis/Veiligheidseisen aan Leveranciers Junis.md similarity index 98% rename from 🏭 Clients/Junis/Veiligheidseisen aan Leveranciers Junis.md rename to Clients/Junis/Veiligheidseisen aan Leveranciers Junis.md index 6eb0c48..e6ce751 100644 --- a/🏭 Clients/Junis/Veiligheidseisen aan Leveranciers Junis.md +++ b/Clients/Junis/Veiligheidseisen aan Leveranciers Junis.md @@ -1,5 +1,5 @@ Gebaseerd op: -- [Dropbox Supplier Security Requirements](../../Corpus/πŸ“šοΈ%20Literature%20notes/Dropbox%20Supplier%20Security%20Requirements.md) +- [Dropbox Supplier Security Requirements](../../Corpus/Literature%20notes/Dropbox%20Supplier%20Security%20Requirements.md) - Beveiligingsbeleid clouddiensten CIP versie 2.2. - Security Technical IT Checklist ([STITCH](https://www.surf.nl/files/2022-03/stitch-1.1-2022_0.pdf)) van SURF.nl diff --git a/🏭 Clients/πŸ‘¨πŸ»β€πŸ’Ό TSW Clients.md b/Clients/TSW Clients.md similarity index 100% rename from 🏭 Clients/πŸ‘¨πŸ»β€πŸ’Ό TSW Clients.md rename to Clients/TSW Clients.md diff --git a/Corpus/πŸ“Ž Attachments/2023-scf-risk-management-ecosystem.jpg b/Corpus/Attachments/2023-scf-risk-management-ecosystem.jpg similarity index 100% rename from Corpus/πŸ“Ž Attachments/2023-scf-risk-management-ecosystem.jpg rename to Corpus/Attachments/2023-scf-risk-management-ecosystem.jpg diff --git a/Corpus/πŸ“Ž Attachments/3-circular-arrows-yellow.svg b/Corpus/Attachments/3-circular-arrows-yellow.svg similarity index 100% rename from Corpus/πŸ“Ž Attachments/3-circular-arrows-yellow.svg rename to Corpus/Attachments/3-circular-arrows-yellow.svg diff --git a/Corpus/πŸ“Ž Attachments/AuditScripts-CIS-Controls-Master-Mappings-v7.1c.xlsx b/Corpus/Attachments/AuditScripts-CIS-Controls-Master-Mappings-v7.1c.xlsx similarity index 100% rename from Corpus/πŸ“Ž Attachments/AuditScripts-CIS-Controls-Master-Mappings-v7.1c.xlsx rename to Corpus/Attachments/AuditScripts-CIS-Controls-Master-Mappings-v7.1c.xlsx diff --git a/Corpus/πŸ“Ž Attachments/BIA resultaten.numbers b/Corpus/Attachments/BIA resultaten.numbers similarity index 100% rename from Corpus/πŸ“Ž Attachments/BIA resultaten.numbers rename to Corpus/Attachments/BIA resultaten.numbers diff --git a/Corpus/πŸ“Ž Attachments/C1-example2.png b/Corpus/Attachments/C1-example2.png similarity index 100% rename from Corpus/πŸ“Ž Attachments/C1-example2.png rename to Corpus/Attachments/C1-example2.png diff --git a/Corpus/πŸ“Ž Attachments/Canvas Cyclus.png b/Corpus/Attachments/Canvas Cyclus.png similarity index 100% rename from Corpus/πŸ“Ž Attachments/Canvas Cyclus.png rename to Corpus/Attachments/Canvas Cyclus.png diff --git a/Corpus/πŸ“Ž Attachments/Certified Ethical Hacker Exam Guide 2021.pdf b/Corpus/Attachments/Certified Ethical Hacker Exam Guide 2021.pdf similarity index 100% rename from Corpus/πŸ“Ž Attachments/Certified Ethical Hacker Exam Guide 2021.pdf rename to Corpus/Attachments/Certified Ethical Hacker Exam Guide 2021.pdf diff --git a/Corpus/πŸ“Ž Attachments/CleanShot 2025-07-01 at 13.59.22.png b/Corpus/Attachments/CleanShot 2025-07-01 at 13.59.22.png similarity index 100% rename from Corpus/πŸ“Ž Attachments/CleanShot 2025-07-01 at 13.59.22.png rename to Corpus/Attachments/CleanShot 2025-07-01 at 13.59.22.png diff --git a/Corpus/πŸ“Ž Attachments/File-Characteristics_of_Capability_Maturity_Model.svg.html b/Corpus/Attachments/File-Characteristics_of_Capability_Maturity_Model.svg.html similarity index 100% rename from Corpus/πŸ“Ž Attachments/File-Characteristics_of_Capability_Maturity_Model.svg.html rename to Corpus/Attachments/File-Characteristics_of_Capability_Maturity_Model.svg.html diff --git a/Corpus/πŸ“Ž Attachments/IMG_4782.png b/Corpus/Attachments/IMG_4782.png similarity index 100% rename from Corpus/πŸ“Ž Attachments/IMG_4782.png rename to Corpus/Attachments/IMG_4782.png diff --git a/Corpus/πŸ“Ž Attachments/ISACA Implementing Segregation of Duties.pdf b/Corpus/Attachments/ISACA Implementing Segregation of Duties.pdf similarity index 100% rename from Corpus/πŸ“Ž Attachments/ISACA Implementing Segregation of Duties.pdf rename to Corpus/Attachments/ISACA Implementing Segregation of Duties.pdf diff --git a/Corpus/πŸ“Ž Attachments/ISMS-in-Context-transparant.png b/Corpus/Attachments/ISMS-in-Context-transparant.png similarity index 100% rename from Corpus/πŸ“Ž Attachments/ISMS-in-Context-transparant.png rename to Corpus/Attachments/ISMS-in-Context-transparant.png diff --git a/Corpus/πŸ“Ž Attachments/ISO 27001 Implementatie dashboard Annex A.xlsx b/Corpus/Attachments/ISO 27001 Implementatie dashboard Annex A.xlsx similarity index 100% rename from Corpus/πŸ“Ž Attachments/ISO 27001 Implementatie dashboard Annex A.xlsx rename to Corpus/Attachments/ISO 27001 Implementatie dashboard Annex A.xlsx diff --git a/Corpus/πŸ“Ž Attachments/ISO_27005_2022_EN.pdf b/Corpus/Attachments/ISO_27005_2022_EN.pdf similarity index 100% rename from Corpus/πŸ“Ž Attachments/ISO_27005_2022_EN.pdf rename to Corpus/Attachments/ISO_27005_2022_EN.pdf diff --git a/Corpus/πŸ“Ž Attachments/NIS_2_and_ISO_27001_2022.pdf b/Corpus/Attachments/NIS_2_and_ISO_27001_2022.pdf similarity index 100% rename from Corpus/πŸ“Ž Attachments/NIS_2_and_ISO_27001_2022.pdf rename to Corpus/Attachments/NIS_2_and_ISO_27001_2022.pdf diff --git a/Corpus/πŸ“Ž Attachments/Pasted image 20240909150131.png b/Corpus/Attachments/Pasted image 20240909150131.png similarity index 100% rename from Corpus/πŸ“Ž Attachments/Pasted image 20240909150131.png rename to Corpus/Attachments/Pasted image 20240909150131.png diff --git a/Corpus/πŸ“Ž Attachments/SANS Creating a threat profile.pdf b/Corpus/Attachments/SANS Creating a threat profile.pdf similarity index 100% rename from Corpus/πŸ“Ž Attachments/SANS Creating a threat profile.pdf rename to Corpus/Attachments/SANS Creating a threat profile.pdf diff --git a/Corpus/πŸ“Ž Attachments/SOD matrix.jpg b/Corpus/Attachments/SOD matrix.jpg similarity index 100% rename from Corpus/πŸ“Ž Attachments/SOD matrix.jpg rename to Corpus/Attachments/SOD matrix.jpg diff --git a/Corpus/πŸ“Ž Attachments/Secure Controls Framework (SCF) - 2022.1 1.xlsx b/Corpus/Attachments/Secure Controls Framework (SCF) - 2022.1 1.xlsx similarity index 100% rename from Corpus/πŸ“Ž Attachments/Secure Controls Framework (SCF) - 2022.1 1.xlsx rename to Corpus/Attachments/Secure Controls Framework (SCF) - 2022.1 1.xlsx diff --git a/Corpus/πŸ“Ž Attachments/Secure Controls Framework (SCF) - 2022.1.xlsx b/Corpus/Attachments/Secure Controls Framework (SCF) - 2022.1.xlsx similarity index 100% rename from Corpus/πŸ“Ž Attachments/Secure Controls Framework (SCF) - 2022.1.xlsx rename to Corpus/Attachments/Secure Controls Framework (SCF) - 2022.1.xlsx diff --git a/Corpus/πŸ“Ž Attachments/TLP_Impact_matrix_NL.xlsx b/Corpus/Attachments/TLP_Impact_matrix_NL.xlsx similarity index 100% rename from Corpus/πŸ“Ž Attachments/TLP_Impact_matrix_NL.xlsx rename to Corpus/Attachments/TLP_Impact_matrix_NL.xlsx diff --git a/Corpus/πŸ“Ž Attachments/Table 1 for Managing Risks - A New Framework.png b/Corpus/Attachments/Table 1 for Managing Risks - A New Framework.png similarity index 100% rename from Corpus/πŸ“Ž Attachments/Table 1 for Managing Risks - A New Framework.png rename to Corpus/Attachments/Table 1 for Managing Risks - A New Framework.png diff --git a/Corpus/πŸ“Ž Attachments/Toreon-Threat-Modeling-Playbook-v1.pdf b/Corpus/Attachments/Toreon-Threat-Modeling-Playbook-v1.pdf similarity index 100% rename from Corpus/πŸ“Ž Attachments/Toreon-Threat-Modeling-Playbook-v1.pdf rename to Corpus/Attachments/Toreon-Threat-Modeling-Playbook-v1.pdf diff --git a/Corpus/πŸ“Ž Attachments/Ubeeo ATS PvE 240315.xlsx b/Corpus/Attachments/Ubeeo ATS PvE 240315.xlsx similarity index 100% rename from Corpus/πŸ“Ž Attachments/Ubeeo ATS PvE 240315.xlsx rename to Corpus/Attachments/Ubeeo ATS PvE 240315.xlsx diff --git a/Corpus/πŸ“Ž Attachments/Understanding OCSF August 2022 v1.8.pdf b/Corpus/Attachments/Understanding OCSF August 2022 v1.8.pdf similarity index 100% rename from Corpus/πŸ“Ž Attachments/Understanding OCSF August 2022 v1.8.pdf rename to Corpus/Attachments/Understanding OCSF August 2022 v1.8.pdf diff --git a/Corpus/πŸ“Ž Attachments/Verplichte documentatie ISO 27001-2017 H4-10 en Annex A van KIWA.docx b/Corpus/Attachments/Verplichte documentatie ISO 27001-2017 H4-10 en Annex A van KIWA.docx similarity index 100% rename from Corpus/πŸ“Ž Attachments/Verplichte documentatie ISO 27001-2017 H4-10 en Annex A van KIWA.docx rename to Corpus/Attachments/Verplichte documentatie ISO 27001-2017 H4-10 en Annex A van KIWA.docx diff --git a/Corpus/πŸ“Ž Attachments/YouTube-icon-small.png b/Corpus/Attachments/YouTube-icon-small.png similarity index 100% rename from Corpus/πŸ“Ž Attachments/YouTube-icon-small.png rename to Corpus/Attachments/YouTube-icon-small.png diff --git a/Corpus/πŸ“Ž Attachments/noun-administrator-7846189.png b/Corpus/Attachments/noun-administrator-7846189.png similarity index 100% rename from Corpus/πŸ“Ž Attachments/noun-administrator-7846189.png rename to Corpus/Attachments/noun-administrator-7846189.png diff --git a/Corpus/πŸ“Ž Attachments/noun-manager-8036683.png b/Corpus/Attachments/noun-manager-8036683.png similarity index 100% rename from Corpus/πŸ“Ž Attachments/noun-manager-8036683.png rename to Corpus/Attachments/noun-manager-8036683.png diff --git a/Corpus/πŸ“Ž Attachments/risk-matrix-example.numbers b/Corpus/Attachments/risk-matrix-example.numbers similarity index 100% rename from Corpus/πŸ“Ž Attachments/risk-matrix-example.numbers rename to Corpus/Attachments/risk-matrix-example.numbers diff --git a/Corpus/πŸ“Ž Attachments/screenshot.png b/Corpus/Attachments/screenshot.png similarity index 100% rename from Corpus/πŸ“Ž Attachments/screenshot.png rename to Corpus/Attachments/screenshot.png diff --git a/Corpus/πŸ’‘Drafts and Ideas/About iso27diy/About the Industry.md b/Corpus/Drafts and Ideas/About iso27diy/About the Industry.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/About iso27diy/About the Industry.md rename to Corpus/Drafts and Ideas/About iso27diy/About the Industry.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/About iso27diy/About the flow.md b/Corpus/Drafts and Ideas/About iso27diy/About the flow.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/About iso27diy/About the flow.md rename to Corpus/Drafts and Ideas/About iso27diy/About the flow.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/About iso27diy/Essence of the ISMS.md b/Corpus/Drafts and Ideas/About iso27diy/Essence of the ISMS.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/About iso27diy/Essence of the ISMS.md rename to Corpus/Drafts and Ideas/About iso27diy/Essence of the ISMS.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/About iso27diy/Interactie met de gebruiker.md b/Corpus/Drafts and Ideas/About iso27diy/Interactie met de gebruiker.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/About iso27diy/Interactie met de gebruiker.md rename to Corpus/Drafts and Ideas/About iso27diy/Interactie met de gebruiker.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/About iso27diy/Ocean Sailing Metaphor.md b/Corpus/Drafts and Ideas/About iso27diy/Ocean Sailing Metaphor.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/About iso27diy/Ocean Sailing Metaphor.md rename to Corpus/Drafts and Ideas/About iso27diy/Ocean Sailing Metaphor.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/About iso27diy/iso27DYI - How this works.md b/Corpus/Drafts and Ideas/About iso27diy/iso27DYI - How this works.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/About iso27diy/iso27DYI - How this works.md rename to Corpus/Drafts and Ideas/About iso27diy/iso27DYI - How this works.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/Context, Strategy, and Leadership/Sources for the Context sessions.md b/Corpus/Drafts and Ideas/Context, Strategy, and Leadership/Sources for the Context sessions.md similarity index 90% rename from Corpus/πŸ’‘Drafts and Ideas/Context, Strategy, and Leadership/Sources for the Context sessions.md rename to Corpus/Drafts and Ideas/Context, Strategy, and Leadership/Sources for the Context sessions.md index f1f7da1..a17707e 100644 --- a/Corpus/πŸ’‘Drafts and Ideas/Context, Strategy, and Leadership/Sources for the Context sessions.md +++ b/Corpus/Drafts and Ideas/Context, Strategy, and Leadership/Sources for the Context sessions.md @@ -6,7 +6,7 @@ ## Sparks [The ISMS in its context](The%20ISMS%20in%20its%20context.md) -[Context analysis](../../πŸ“šοΈ%20Literature%20notes/Context%20analysis.md) +[Context analysis](../../Literature%20notes/Context%20analysis.md) ## Mark I content [ISO27DIY Video A.4 Context and Scope - Internal issues](../../Standards/ISO27x/legacy/iso27DIY%20mk%20I/ISO27DIY%20Video%20A.4%20Context%20and%20Scope%20-%20Internal%20issues.md) @@ -27,12 +27,12 @@ Functiehuis (4.1) Organogram (4.1) Bedrijfsprocessen (4.1) SWOT (4.1) -- [SWOT Analyses template](../../πŸŽ‡%20Sparks/SWOT%20Analyses%20template.md) +- [SWOT Analyses template](../../Sparks/SWOT%20Analyses%20template.md) DESTEP (4.2) Stakeholder analyse (4.2) Wet- en regelgeving (4.2, A5.31-A5.34) ## Further research - [ ] Assets? -- [ ] Impactbepaling uit [Dataclassificatie Humankind](../../../🏭%20Clients/Humankind/Dataclassificatie%20Humankind.md) +- [ ] Impactbepaling uit [Dataclassificatie Humankind](../../../Clients/Humankind/Dataclassificatie%20Humankind.md) diff --git a/Corpus/πŸ’‘Drafts and Ideas/Context, Strategy, and Leadership/The ISMS in its context.md b/Corpus/Drafts and Ideas/Context, Strategy, and Leadership/The ISMS in its context.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Context, Strategy, and Leadership/The ISMS in its context.md rename to Corpus/Drafts and Ideas/Context, Strategy, and Leadership/The ISMS in its context.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/Controls/Create a threat analysis chatbot.md b/Corpus/Drafts and Ideas/Controls/Create a threat analysis chatbot.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Controls/Create a threat analysis chatbot.md rename to Corpus/Drafts and Ideas/Controls/Create a threat analysis chatbot.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/Dealing with a reported application vulnerability Log4j.md b/Corpus/Drafts and Ideas/Dealing with a reported application vulnerability Log4j.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Dealing with a reported application vulnerability Log4j.md rename to Corpus/Drafts and Ideas/Dealing with a reported application vulnerability Log4j.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/GRC software is geschreven voor domeindeskundigen.md b/Corpus/Drafts and Ideas/GRC software is geschreven voor domeindeskundigen.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/GRC software is geschreven voor domeindeskundigen.md rename to Corpus/Drafts and Ideas/GRC software is geschreven voor domeindeskundigen.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/ISMS/About implementation and proof.md b/Corpus/Drafts and Ideas/ISMS/About implementation and proof.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/ISMS/About implementation and proof.md rename to Corpus/Drafts and Ideas/ISMS/About implementation and proof.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/ISMS/About policies controls and risks.md b/Corpus/Drafts and Ideas/ISMS/About policies controls and risks.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/ISMS/About policies controls and risks.md rename to Corpus/Drafts and Ideas/ISMS/About policies controls and risks.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/ISMS/About the Statement of Applicability.md b/Corpus/Drafts and Ideas/ISMS/About the Statement of Applicability.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/ISMS/About the Statement of Applicability.md rename to Corpus/Drafts and Ideas/ISMS/About the Statement of Applicability.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/ISMS/Basic ISMS governance model.md b/Corpus/Drafts and Ideas/ISMS/Basic ISMS governance model.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/ISMS/Basic ISMS governance model.md rename to Corpus/Drafts and Ideas/ISMS/Basic ISMS governance model.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/Ideas about enforcement.md b/Corpus/Drafts and Ideas/Ideas about enforcement.md similarity index 94% rename from Corpus/πŸ’‘Drafts and Ideas/Ideas about enforcement.md rename to Corpus/Drafts and Ideas/Ideas about enforcement.md index 9e64b16..1921759 100644 --- a/Corpus/πŸ’‘Drafts and Ideas/Ideas about enforcement.md +++ b/Corpus/Drafts and Ideas/Ideas about enforcement.md @@ -10,4 +10,4 @@ There's also a link here to different stakeholders with different interests. Thi Related: - [Labeling of information in the digital domain](Labeling%20of%20information%20in%20the%20digital%20domain.md). -- [Stakeholder Analysis](../πŸŽ‡%20Sparks/Stakeholder%20Analysis.md) \ No newline at end of file +- [Stakeholder Analysis](../Sparks/Stakeholder%20Analysis.md) \ No newline at end of file diff --git a/Corpus/πŸ’‘Drafts and Ideas/Identification.md b/Corpus/Drafts and Ideas/Identification.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Identification.md rename to Corpus/Drafts and Ideas/Identification.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/Identity and Access Management (IAM).md b/Corpus/Drafts and Ideas/Identity and Access Management (IAM).md similarity index 90% rename from Corpus/πŸ’‘Drafts and Ideas/Identity and Access Management (IAM).md rename to Corpus/Drafts and Ideas/Identity and Access Management (IAM).md index 9e6d0bd..ea96326 100644 --- a/Corpus/πŸ’‘Drafts and Ideas/Identity and Access Management (IAM).md +++ b/Corpus/Drafts and Ideas/Identity and Access Management (IAM).md @@ -11,4 +11,4 @@ See: - [Authentication](../Standards/ISO27x/Authentication.md) – "This is how I prove it" - [Authorization](../Standards/ISO27x/Authorization.md) – "... then this is what you get access to" - [CISSP_Domain_5_1](../Standards/CISSP/CISSP_Domain_5_1.md), [CISSP_Domain_5_2](../Standards/CISSP/CISSP_Domain_5_2.md) -- [Roles in Identity and Access Management (IAM)](../πŸ“šοΈ%20Literature%20notes/Roles%20in%20Identity%20and%20Access%20Management%20(IAM).md) \ No newline at end of file +- [Roles in Identity and Access Management (IAM)](../Literature%20notes/Roles%20in%20Identity%20and%20Access%20Management%20(IAM).md) \ No newline at end of file diff --git a/Corpus/πŸ’‘Drafts and Ideas/Impact of Disruption.md b/Corpus/Drafts and Ideas/Impact of Disruption.md similarity index 81% rename from Corpus/πŸ’‘Drafts and Ideas/Impact of Disruption.md rename to Corpus/Drafts and Ideas/Impact of Disruption.md index 7fc1d82..e03b86e 100644 --- a/Corpus/πŸ’‘Drafts and Ideas/Impact of Disruption.md +++ b/Corpus/Drafts and Ideas/Impact of Disruption.md @@ -1,7 +1,7 @@ ## Impact of Disruption - [](../πŸ“Ž%20Attachments/TLP_Impact_matrix_NL.xlsx) + [](../Attachments/TLP_Impact_matrix_NL.xlsx) [BCP_BedrijfscontinuΓ―teitsplanning](../πŸ“šοΈ%20Literature%20notes/BCP_BedrijfscontinuΓ―teitsplanning.md) [Business Impact Analysis (BIA)](../πŸŽ‡%20Sparks/Business%20Impact%20Analysis%20(BIA).md) diff --git a/Corpus/πŸ’‘Drafts and Ideas/Information Security.md b/Corpus/Drafts and Ideas/Information Security.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Information Security.md rename to Corpus/Drafts and Ideas/Information Security.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/Labeling of information in the digital domain.md b/Corpus/Drafts and Ideas/Labeling of information in the digital domain.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Labeling of information in the digital domain.md rename to Corpus/Drafts and Ideas/Labeling of information in the digital domain.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/List of possible partners.md b/Corpus/Drafts and Ideas/List of possible partners.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/List of possible partners.md rename to Corpus/Drafts and Ideas/List of possible partners.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/Measures vs Workability.md b/Corpus/Drafts and Ideas/Measures vs Workability.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Measures vs Workability.md rename to Corpus/Drafts and Ideas/Measures vs Workability.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/Modules, Screens and Content.md b/Corpus/Drafts and Ideas/Modules, Screens and Content.md similarity index 90% rename from Corpus/πŸ’‘Drafts and Ideas/Modules, Screens and Content.md rename to Corpus/Drafts and Ideas/Modules, Screens and Content.md index 2454a24..feba76b 100644 --- a/Corpus/πŸ’‘Drafts and Ideas/Modules, Screens and Content.md +++ b/Corpus/Drafts and Ideas/Modules, Screens and Content.md @@ -19,4 +19,4 @@ See also the ISMS Tool and Overzicht beveiliging Excel sheets created for NHC: # Audit mode -![](../πŸ“Ž%20Attachments/ISO%2027001%20Implementatie%20dashboard%20Annex%20A.xlsx) +![](../Attachments/ISO%2027001%20Implementatie%20dashboard%20Annex%20A.xlsx) diff --git a/Corpus/πŸ’‘Drafts and Ideas/Most Challenging Clauses in ISO 27001.md b/Corpus/Drafts and Ideas/Most Challenging Clauses in ISO 27001.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Most Challenging Clauses in ISO 27001.md rename to Corpus/Drafts and Ideas/Most Challenging Clauses in ISO 27001.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/NHC ISMS tool_template nieuw.xlsx b/Corpus/Drafts and Ideas/NHC ISMS tool_template nieuw.xlsx similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/NHC ISMS tool_template nieuw.xlsx rename to Corpus/Drafts and Ideas/NHC ISMS tool_template nieuw.xlsx diff --git a/Corpus/πŸ’‘Drafts and Ideas/Nedap ISMS tool structure.md b/Corpus/Drafts and Ideas/Nedap ISMS tool structure.md similarity index 75% rename from Corpus/πŸ’‘Drafts and Ideas/Nedap ISMS tool structure.md rename to Corpus/Drafts and Ideas/Nedap ISMS tool structure.md index 1fb6e29..1a438e3 100644 --- a/Corpus/πŸ’‘Drafts and Ideas/Nedap ISMS tool structure.md +++ b/Corpus/Drafts and Ideas/Nedap ISMS tool structure.md @@ -12,13 +12,13 @@ Doelstellingen/KPI's - Methode risicoanalyse en -management (RAM) - Risicoanalyse en -management (RAM) - Maatregelen - - Implementation planning; for inspiration, see [Topical InfoSec Kanban’s](../πŸ“šοΈ%20Literature%20notes/Topical%20InfoSec%20Kanban’s.md) + - Implementation planning; for inspiration, see [Topical InfoSec Kanban’s](../Literature%20notes/Topical%20InfoSec%20Kanban’s.md) - Monitoren en meten ### STRUCTUUR ISMS - Rollen - ISMS planning - - for inspiration, see [Topical InfoSec Kanban’s](../πŸ“šοΈ%20Literature%20notes/Topical%20InfoSec%20Kanban’s.md) + - for inspiration, see [Topical InfoSec Kanban’s](../Literature%20notes/Topical%20InfoSec%20Kanban’s.md) Interne audit planning diff --git a/Corpus/πŸ’‘Drafts and Ideas/Operational Technology.md b/Corpus/Drafts and Ideas/Operational Technology.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Operational Technology.md rename to Corpus/Drafts and Ideas/Operational Technology.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/Overzicht beveiliging nieuw.xlsx b/Corpus/Drafts and Ideas/Overzicht beveiliging nieuw.xlsx similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Overzicht beveiliging nieuw.xlsx rename to Corpus/Drafts and Ideas/Overzicht beveiliging nieuw.xlsx diff --git a/Corpus/πŸ’‘Drafts and Ideas/Perverse prikkels in de normindustrie.md b/Corpus/Drafts and Ideas/Perverse prikkels in de normindustrie.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Perverse prikkels in de normindustrie.md rename to Corpus/Drafts and Ideas/Perverse prikkels in de normindustrie.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/Privacy.md b/Corpus/Drafts and Ideas/Privacy.md similarity index 83% rename from Corpus/πŸ’‘Drafts and Ideas/Privacy.md rename to Corpus/Drafts and Ideas/Privacy.md index 4b7f281..6cdadc9 100644 --- a/Corpus/πŸ’‘Drafts and Ideas/Privacy.md +++ b/Corpus/Drafts and Ideas/Privacy.md @@ -1,4 +1,4 @@ -[Core concepts of Privacy](../πŸŽ‡%20Sparks/Core%20concepts%20of%20Privacy.md) +[Core concepts of Privacy](../Sparks/Core%20concepts%20of%20Privacy.md) [AVG GDPR resources](../Standards/AVG/AVG%20GDPR%20resources.md) Privacy in ISO 27001: diff --git a/Corpus/πŸ’‘Drafts and Ideas/Problems solved.md b/Corpus/Drafts and Ideas/Problems solved.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Problems solved.md rename to Corpus/Drafts and Ideas/Problems solved.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/Risk appetite.md b/Corpus/Drafts and Ideas/Risk appetite.md similarity index 79% rename from Corpus/πŸ’‘Drafts and Ideas/Risk appetite.md rename to Corpus/Drafts and Ideas/Risk appetite.md index b20eb88..016b411 100644 --- a/Corpus/πŸ’‘Drafts and Ideas/Risk appetite.md +++ b/Corpus/Drafts and Ideas/Risk appetite.md @@ -10,6 +10,6 @@ Articulate the risk appetite to: - help guide risk and reward decision-making - help to embed the right risk culture -See [Topical InfoSec Kanban’s](../πŸ“šοΈ%20Literature%20notes/Topical%20InfoSec%20Kanban’s.md) for inspiration. +See [Topical InfoSec Kanban’s](../Literature%20notes/Topical%20InfoSec%20Kanban’s.md) for inspiration. See also [Risk tolerance](../πŸŽ‡%20Sparks/Risk%20tolerance.md) \ No newline at end of file diff --git a/Corpus/πŸ’‘Drafts and Ideas/Service management system block diagram.png b/Corpus/Drafts and Ideas/Service management system block diagram.png similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Service management system block diagram.png rename to Corpus/Drafts and Ideas/Service management system block diagram.png diff --git a/Corpus/πŸ’‘Drafts and Ideas/The Art of Service.md b/Corpus/Drafts and Ideas/The Art of Service.md similarity index 69% rename from Corpus/πŸ’‘Drafts and Ideas/The Art of Service.md rename to Corpus/Drafts and Ideas/The Art of Service.md index 7ee55a7..8b31487 100644 --- a/Corpus/πŸ’‘Drafts and Ideas/The Art of Service.md +++ b/Corpus/Drafts and Ideas/The Art of Service.md @@ -1,6 +1,6 @@ The Art of Service is a company offering knowledge resources for organizations that don't want to use external consultants. -See their [Topical InfoSec Kanban’s](../πŸ“šοΈ%20Literature%20notes/Topical%20InfoSec%20Kanban’s.md) for an example. +See their [Topical InfoSec Kanban’s](../Literature%20notes/Topical%20InfoSec%20Kanban’s.md) for an example. This is their [website](https://theartofservice.com). diff --git a/Corpus/πŸ’‘Drafts and Ideas/Three user modes for AuditGlue.md b/Corpus/Drafts and Ideas/Three user modes for AuditGlue.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Three user modes for AuditGlue.md rename to Corpus/Drafts and Ideas/Three user modes for AuditGlue.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/Toegevoegde waarde van ISO27DIY.md b/Corpus/Drafts and Ideas/Toegevoegde waarde van ISO27DIY.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Toegevoegde waarde van ISO27DIY.md rename to Corpus/Drafts and Ideas/Toegevoegde waarde van ISO27DIY.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/Verantwoordelijkheid en middelen.md b/Corpus/Drafts and Ideas/Verantwoordelijkheid en middelen.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Verantwoordelijkheid en middelen.md rename to Corpus/Drafts and Ideas/Verantwoordelijkheid en middelen.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/Voordelen van processvolwassenheid.md b/Corpus/Drafts and Ideas/Voordelen van processvolwassenheid.md similarity index 100% rename from Corpus/πŸ’‘Drafts and Ideas/Voordelen van processvolwassenheid.md rename to Corpus/Drafts and Ideas/Voordelen van processvolwassenheid.md diff --git a/Corpus/πŸ’‘Drafts and Ideas/Vulnerability.md b/Corpus/Drafts and Ideas/Vulnerability.md similarity index 85% rename from Corpus/πŸ’‘Drafts and Ideas/Vulnerability.md rename to Corpus/Drafts and Ideas/Vulnerability.md index a05c008..37085b3 100644 --- a/Corpus/πŸ’‘Drafts and Ideas/Vulnerability.md +++ b/Corpus/Drafts and Ideas/Vulnerability.md @@ -7,9 +7,9 @@ See also: - [Assets](../πŸŽ‡%20Sparks/Assets.md) - [Risks](../πŸŽ‡%20Sparks/Risks.md) - [Threat](../πŸ“šοΈ%20Literature%20notes/Threat.md) -- [Vulnerability Disclosure Policy](../πŸŽ‡%20Sparks/Vulnerability%20Disclosure%20Policy.md) +- [Vulnerability Disclosure Policy](../Sparks/Vulnerability%20Disclosure%20Policy.md) - [Dealing with a reported application vulnerability Log4j](Dealing%20with%20a%20reported%20application%20vulnerability%20Log4j.md) -- [Software vulnerability databases](../πŸ“šοΈ%20Literature%20notes/Software%20vulnerability%20databases.md) +- [Software vulnerability databases](../Literature%20notes/Software%20vulnerability%20databases.md) - (https://www.google.nl/search?q=software+vulnerability+databases) - [API Endpoint Vulnerabilities](https://www.reblaze.com/blog/api-security/how-hackers-attack-your-mobile-apps-part-3-api-endpoint-vulnerabilities/) - [NSA and CISA publish hardening guides](https://www.nsa.gov/Press-Room/News-Highlights/Article/Article/2716980/nsa-cisa-release-kubernetes-hardening-guidance/utm_source/nsa-cisa-release-kubernetes-hardening-guidance/) diff --git a/Corpus/πŸ“šοΈ Literature notes/(ISC)Β² meeting on Secure Software Development.md b/Corpus/Literature notes/(ISC)Β² meeting on Secure Software Development.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/(ISC)Β² meeting on Secure Software Development.md rename to Corpus/Literature notes/(ISC)Β² meeting on Secure Software Development.md diff --git a/Corpus/πŸ“šοΈ Literature notes/201907-Handreiking-Diepgaande-Risicoanalyse-methode-gemeenten-v2.2.docx b/Corpus/Literature notes/201907-Handreiking-Diepgaande-Risicoanalyse-methode-gemeenten-v2.2.docx similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/201907-Handreiking-Diepgaande-Risicoanalyse-methode-gemeenten-v2.2.docx rename to Corpus/Literature notes/201907-Handreiking-Diepgaande-Risicoanalyse-methode-gemeenten-v2.2.docx diff --git a/Corpus/πŸ“šοΈ Literature notes/202003-Diepgaande-Risicoanalyse-methode-gemeenten-v2.1.xlsx b/Corpus/Literature notes/202003-Diepgaande-Risicoanalyse-methode-gemeenten-v2.1.xlsx similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/202003-Diepgaande-Risicoanalyse-methode-gemeenten-v2.1.xlsx rename to Corpus/Literature notes/202003-Diepgaande-Risicoanalyse-methode-gemeenten-v2.1.xlsx diff --git a/Corpus/πŸ“šοΈ Literature notes/Agile Development for Application Security Managers.md b/Corpus/Literature notes/Agile Development for Application Security Managers.md similarity index 97% rename from Corpus/πŸ“šοΈ Literature notes/Agile Development for Application Security Managers.md rename to Corpus/Literature notes/Agile Development for Application Security Managers.md index 3b349a5..2dd01c4 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Agile Development for Application Security Managers.md +++ b/Corpus/Literature notes/Agile Development for Application Security Managers.md @@ -12,7 +12,7 @@ It is moderately suitable for distribution to them in a company setting. - [ISO 27001 A.14.2.1 Secure development policy](../Standards/ISO27x/legacy/ISO%2027001%202013/ISO%2027001%20A.14.2.1%20Secure%20development%20policy.md) Related: - - [DevSecOps and ISO 27k](../πŸŽ‡%20Sparks/DevSecOps%20and%20ISO%2027k.md) + - [DevSecOps and ISO 27k](../Sparks/DevSecOps%20and%20ISO%2027k.md) # Achieving Application Security in Agile Weave security thinking into the Agile process. Adding it on later will be less secure, more costly and will probably achieve not enough attention because of release deadlines. diff --git a/Corpus/πŸ“šοΈ Literature notes/Agile-development-for-Application-security-managers2.pdf b/Corpus/Literature notes/Agile-development-for-Application-security-managers2.pdf similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Agile-development-for-Application-security-managers2.pdf rename to Corpus/Literature notes/Agile-development-for-Application-security-managers2.pdf diff --git a/Corpus/πŸ“šοΈ Literature notes/Applying Zero Trust Principles to Enterprise Mobility.md b/Corpus/Literature notes/Applying Zero Trust Principles to Enterprise Mobility.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Applying Zero Trust Principles to Enterprise Mobility.md rename to Corpus/Literature notes/Applying Zero Trust Principles to Enterprise Mobility.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Asset lifecycle.md b/Corpus/Literature notes/Asset lifecycle.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Asset lifecycle.md rename to Corpus/Literature notes/Asset lifecycle.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Assets, Vulnerabilities, Threats, Risks.md b/Corpus/Literature notes/Assets, Vulnerabilities, Threats, Risks.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Assets, Vulnerabilities, Threats, Risks.md rename to Corpus/Literature notes/Assets, Vulnerabilities, Threats, Risks.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Attack Surface Analysis.md b/Corpus/Literature notes/Attack Surface Analysis.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Attack Surface Analysis.md rename to Corpus/Literature notes/Attack Surface Analysis.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Authentication Methods Used for Network Security.md b/Corpus/Literature notes/Authentication Methods Used for Network Security.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Authentication Methods Used for Network Security.md rename to Corpus/Literature notes/Authentication Methods Used for Network Security.md diff --git a/Corpus/πŸ“šοΈ Literature notes/BAD-pyramid-miessler.png b/Corpus/Literature notes/BAD-pyramid-miessler.png similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/BAD-pyramid-miessler.png rename to Corpus/Literature notes/BAD-pyramid-miessler.png diff --git a/Corpus/πŸ“šοΈ Literature notes/BCP_BedrijfscontinuΓ―teitsplanning.md b/Corpus/Literature notes/BCP_BedrijfscontinuΓ―teitsplanning.md similarity index 94% rename from Corpus/πŸ“šοΈ Literature notes/BCP_BedrijfscontinuΓ―teitsplanning.md rename to Corpus/Literature notes/BCP_BedrijfscontinuΓ―teitsplanning.md index 8b1e6a2..4b4ecc7 100644 --- a/Corpus/πŸ“šοΈ Literature notes/BCP_BedrijfscontinuΓ―teitsplanning.md +++ b/Corpus/Literature notes/BCP_BedrijfscontinuΓ―teitsplanning.md @@ -7,7 +7,7 @@ Producten: ## Literatuur - BCP.mindnode op iCloud > Best Practices -- evt. [CIS Critical Security Controls](../πŸŽ‡%20Sparks/CIS%20Critical%20Security%20Controls.md) als raamwerk +- evt. [CIS Critical Security Controls](../Sparks/CIS%20Critical%20Security%20Controls.md) als raamwerk - ISO-22301-2019 'Business continuity management systems' en ISO-22313-2020 'Guidance on the use of ISO 22301' - [CISSP, Chapter 3](../Standards/CISSP/CISSP_OSG_Chapter_3.md) @@ -17,7 +17,7 @@ BedrijfscontinuΓ―teitsplanning is een continu proces, met als doel het implement Belangrijke onderdelen van BedrijfscontinuΓ―teitsplanning zijn de Bedrijfsimpact Analyse ([BIA](../πŸŽ‡%20Sparks/Business%20Impact%20Analysis%20(BIA).md)) en het Herstelplan ('Disaster Recovery Plan' / [DRP](../πŸŽ‡%20Sparks/Disaster%20Recovery%20Planning.md)). De BIA richt zich op het identificeren van de impact van verstoringen op de bedrijfsprocessen, en het Herstelplan richt zich op het herstel van de normale bedrijfsprocessen na een verstoring en de eventuele inzet van alternatieve middelen of werkwijzen . -Zie ook: [Het belang van een BedrijfscontinuΓ―teitsplan](../πŸŽ‡%20Sparks/Belang%20van%20een%20BCP.md) / [The importance of having a business continuity plan](../πŸŽ‡%20Sparks/Importance%20of%20a%20BCP.md). +Zie ook: [Het belang van een BedrijfscontinuΓ―teitsplan](../Sparks/Belang%20van%20een%20BCP.md) / [The importance of having a business continuity plan](../Sparks/Importance%20of%20a%20BCP.md). ## Aanpak @@ -143,7 +143,7 @@ Scenario's opstellen o.b.v. risicoanalyse See also: - [Disaster Recovery Planning](../πŸŽ‡%20Sparks/Disaster%20Recovery%20Planning.md) - [Checklist for auditing Business Continuity and Disaster Recovery](Checklists%20Gerardus%20Blokdyk/Checklist%20for%20auditing%20Business%20Continuity%20and%20Disaster%20Recovery.md) -- [Ransomware Playbook](../πŸŽ‡%20Sparks/Ransomware%20Playbook.md) +- [Ransomware Playbook](../Sparks/Ransomware%20Playbook.md) ISO controls: - 5.29: diff --git a/Corpus/πŸ“šοΈ Literature notes/Behavioural change theories.md b/Corpus/Literature notes/Behavioural change theories.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Behavioural change theories.md rename to Corpus/Literature notes/Behavioural change theories.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Benefits of threat intelligence across the three layers.md b/Corpus/Literature notes/Benefits of threat intelligence across the three layers.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Benefits of threat intelligence across the three layers.md rename to Corpus/Literature notes/Benefits of threat intelligence across the three layers.md diff --git a/Corpus/πŸ“šοΈ Literature notes/CASSM Consumer Authentication Strength Maturity Model.md b/Corpus/Literature notes/CASSM Consumer Authentication Strength Maturity Model.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/CASSM Consumer Authentication Strength Maturity Model.md rename to Corpus/Literature notes/CASSM Consumer Authentication Strength Maturity Model.md diff --git a/Corpus/πŸ“šοΈ Literature notes/CISA RVWP.md b/Corpus/Literature notes/CISA RVWP.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/CISA RVWP.md rename to Corpus/Literature notes/CISA RVWP.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Access Management.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Access Management.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Access Management.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Access Management.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Business Continuity Planning.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Business Continuity Planning.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Business Continuity Planning.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Business Continuity Planning.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Business Continuity and Disaster Recovery.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Business Continuity and Disaster Recovery.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Business Continuity and Disaster Recovery.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Business Continuity and Disaster Recovery.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cloud Security – organized by themes.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cloud Security – organized by themes.md similarity index 99% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cloud Security – organized by themes.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cloud Security – organized by themes.md index 85b68fc..efefade 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cloud Security – organized by themes.md +++ b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cloud Security – organized by themes.md @@ -12,7 +12,7 @@ All of them – just to link this note somewhere: Related: - [Vendor security MoC](../../πŸŽ‡%20Sparks/Vendor%20security%20MoC.md) -- [ISO 27k family](../../../../iso27DIY-gis/reference/Examples/ISO%2027k%20family.md): ISO 27017, ISO 27018 +- [ISO 27k family](../../../../iso27DIY-gis/reference/examples/ISO%2027k%20family.md): ISO 27017, ISO 27018 ## Organized By Key Themes: Security, Management, Risk, Cloud, Data, Software, Development, Technology, Network and Project: diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Configuration Management.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Configuration Management.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Configuration Management.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Configuration Management.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cyber Operations.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cyber Operations.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cyber Operations.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cyber Operations.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cyber Threat Intelligence.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cyber Threat Intelligence.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cyber Threat Intelligence.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cyber Threat Intelligence.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cybersecurity.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cybersecurity.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cybersecurity.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Cybersecurity.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing DLP technologies.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing DLP technologies.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing DLP technologies.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing DLP technologies.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Data Governance.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Data Governance.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Data Governance.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Data Governance.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing DevOps IoT.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing DevOps IoT.md similarity index 99% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing DevOps IoT.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing DevOps IoT.md index 1975836..3c58861 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing DevOps IoT.md +++ b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing DevOps IoT.md @@ -10,7 +10,7 @@ Relevant ISO 27001 clauses/controls: Related: - [Operational Technology](../../πŸ’‘Drafts%20and%20Ideas/Operational%20Technology.md) -- [DevSecOps and ISO 27k](../../πŸŽ‡%20Sparks/DevSecOps%20and%20ISO%2027k.md) +- [DevSecOps and ISO 27k](../../Sparks/DevSecOps%20and%20ISO%2027k.md) ## DevOps IoT: Ask This; diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing GRC.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing GRC.md similarity index 99% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing GRC.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing GRC.md index dd42df3..c2fc8a9 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing GRC.md +++ b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing GRC.md @@ -8,7 +8,7 @@ Relevant ISO 27001 clauses/controls: - [ISO 27001 A 18 Compliance](../../Standards/ISO27x/legacy/ISO%2027001%202013/ISO%2027001%20A%2018%20Compliance.md) Related: -[External audits](../../πŸŽ‡%20Sparks/External%20audits.md) +[External audits](../../Sparks/External%20audits.md) [ISO 27001 audit process](../../Standards/ISO27x/ISO%2027001%20audit%20process.md) diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing ISO 27001.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing ISO 27001.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing ISO 27001.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing ISO 27001.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing IT Security.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing IT Security.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing IT Security.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing IT Security.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Incident Response Plan.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Incident Response Plan.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Incident Response Plan.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Incident Response Plan.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Network Security.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Network Security.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Network Security.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Network Security.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Security Operations.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Security Operations.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Security Operations.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Security Operations.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Threat Intelligence.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Threat Intelligence.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Threat Intelligence.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Threat Intelligence.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Threat Management.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Threat Management.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Threat Management.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Threat Management.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Threat Modeling.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Threat Modeling.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Threat Modeling.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Threat Modeling.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Vendor Management.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Vendor Management.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Vendor Management.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Vendor Management.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Zero Trust approach.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Zero Trust approach.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Zero Trust approach.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing Zero Trust approach.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing the ISMS process.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing the ISMS process.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing the ISMS process.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for auditing the ISMS process.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for security product vendors assessment.md b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for security product vendors assessment.md similarity index 98% rename from Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for security product vendors assessment.md rename to Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for security product vendors assessment.md index e1bb7f3..3555bda 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Checklists Gerardus Blokdyk/Checklist for security product vendors assessment.md +++ b/Corpus/Literature notes/Checklists Gerardus Blokdyk/Checklist for security product vendors assessment.md @@ -10,7 +10,7 @@ Relevant ISO 27001 clauses/controls: - [ISO 27001 A 18 Compliance](../../Standards/ISO27x/legacy/ISO%2027001%202013/ISO%2027001%20A%2018%20Compliance.md) Related: -- [Examples of vendor selection questionnaires](../../πŸŽ‡%20Sparks/Examples%20of%20vendor%20selection%20questionnaires.md) +- [Examples of vendor selection questionnaires](../../Sparks/Examples%20of%20vendor%20selection%20questionnaires.md) # Assessing Security Product Vendors? Ask this: 1. When a faulty product is to be returned, what processes does the vendor have in place to ensure that no customer data exists on disks or storage before it is sent to one of return centers? diff --git a/Corpus/πŸ“šοΈ Literature notes/Context analysis.md b/Corpus/Literature notes/Context analysis.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Context analysis.md rename to Corpus/Literature notes/Context analysis.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Corporate social responsibility.md b/Corpus/Literature notes/Corporate social responsibility.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Corporate social responsibility.md rename to Corpus/Literature notes/Corporate social responsibility.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Cross standards mapping.md b/Corpus/Literature notes/Cross standards mapping.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Cross standards mapping.md rename to Corpus/Literature notes/Cross standards mapping.md diff --git a/Corpus/πŸ“šοΈ Literature notes/DPOaaS offer Glownexus.md b/Corpus/Literature notes/DPOaaS offer Glownexus.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/DPOaaS offer Glownexus.md rename to Corpus/Literature notes/DPOaaS offer Glownexus.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Data Governance.md b/Corpus/Literature notes/Data Governance.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Data Governance.md rename to Corpus/Literature notes/Data Governance.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Data security lifecycle.md b/Corpus/Literature notes/Data security lifecycle.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Data security lifecycle.md rename to Corpus/Literature notes/Data security lifecycle.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Datatags System.md b/Corpus/Literature notes/Datatags System.md similarity index 98% rename from Corpus/πŸ“šοΈ Literature notes/Datatags System.md rename to Corpus/Literature notes/Datatags System.md index 8c24712..929fd01 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Datatags System.md +++ b/Corpus/Literature notes/Datatags System.md @@ -4,7 +4,7 @@ Science. 2015101601. October 16, 2015. http://techscience.org/a/2015101601; PDF Related: - [ISO 27001 A 8.2 Information classification](../Standards/ISO27x/legacy/ISO%2027001%202013/ISO%2027001%20A%208.2%20Information%20classification.md) -- [Privacy](../πŸ’‘Drafts%20and%20Ideas/Privacy.md) +- [Privacy](../Drafts%20and%20Ideas/Privacy.md) Sweeney at all have developed a privacy oriented data classification system with six levels: diff --git a/Corpus/πŸ“šοΈ Literature notes/Datatags classification.jpg b/Corpus/Literature notes/Datatags classification.jpg similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Datatags classification.jpg rename to Corpus/Literature notes/Datatags classification.jpg diff --git a/Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook.md b/Corpus/Literature notes/Def_Sec_Handbook.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook.md rename to Corpus/Literature notes/Def_Sec_Handbook.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_1.md b/Corpus/Literature notes/Def_Sec_Handbook_Chapter_1.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_1.md rename to Corpus/Literature notes/Def_Sec_Handbook_Chapter_1.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_10.md b/Corpus/Literature notes/Def_Sec_Handbook_Chapter_10.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_10.md rename to Corpus/Literature notes/Def_Sec_Handbook_Chapter_10.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_11.md b/Corpus/Literature notes/Def_Sec_Handbook_Chapter_11.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_11.md rename to Corpus/Literature notes/Def_Sec_Handbook_Chapter_11.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_2.md b/Corpus/Literature notes/Def_Sec_Handbook_Chapter_2.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_2.md rename to Corpus/Literature notes/Def_Sec_Handbook_Chapter_2.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_3.md b/Corpus/Literature notes/Def_Sec_Handbook_Chapter_3.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_3.md rename to Corpus/Literature notes/Def_Sec_Handbook_Chapter_3.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_4.md b/Corpus/Literature notes/Def_Sec_Handbook_Chapter_4.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_4.md rename to Corpus/Literature notes/Def_Sec_Handbook_Chapter_4.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_5.md b/Corpus/Literature notes/Def_Sec_Handbook_Chapter_5.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_5.md rename to Corpus/Literature notes/Def_Sec_Handbook_Chapter_5.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_6.md b/Corpus/Literature notes/Def_Sec_Handbook_Chapter_6.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_6.md rename to Corpus/Literature notes/Def_Sec_Handbook_Chapter_6.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_7.md b/Corpus/Literature notes/Def_Sec_Handbook_Chapter_7.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_7.md rename to Corpus/Literature notes/Def_Sec_Handbook_Chapter_7.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_8.md b/Corpus/Literature notes/Def_Sec_Handbook_Chapter_8.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_8.md rename to Corpus/Literature notes/Def_Sec_Handbook_Chapter_8.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_9.md b/Corpus/Literature notes/Def_Sec_Handbook_Chapter_9.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Def_Sec_Handbook_Chapter_9.md rename to Corpus/Literature notes/Def_Sec_Handbook_Chapter_9.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Designing an information management scheme.md b/Corpus/Literature notes/Designing an information management scheme.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Designing an information management scheme.md rename to Corpus/Literature notes/Designing an information management scheme.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Draft Vendor and Product checklist.md b/Corpus/Literature notes/Draft Vendor and Product checklist.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Draft Vendor and Product checklist.md rename to Corpus/Literature notes/Draft Vendor and Product checklist.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Dropbox Supplier Security Requirements.md b/Corpus/Literature notes/Dropbox Supplier Security Requirements.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Dropbox Supplier Security Requirements.md rename to Corpus/Literature notes/Dropbox Supplier Security Requirements.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Example introduction for an Internal Privacy Policy.md b/Corpus/Literature notes/Example introduction for an Internal Privacy Policy.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Example introduction for an Internal Privacy Policy.md rename to Corpus/Literature notes/Example introduction for an Internal Privacy Policy.md diff --git a/Corpus/Literature notes/Examples of TLP document classification for different industries.md b/Corpus/Literature notes/Examples of TLP document classification for different industries.md new file mode 100644 index 0000000..3102ffb --- /dev/null +++ b/Corpus/Literature notes/Examples of TLP document classification for different industries.md @@ -0,0 +1,12 @@ +# Examples of TLP document classification for different industries + +- [for information security](../Sparks/FIRST%20TLP%20labeled%20document%20examples%20for%20information%20security.md) +- [for a commercial services organization](../Sparks/FIRST%20TLP%20labeled%20document%20examples%20commercial.md) +- [for a childcare organization](../Sparks/FIRST%20TLP%20labeled%20document%20examples%20childcare.md) +- [for a hospital](../Sparks/FIRST%20TLP%20labeled%20document%20examples%20hospital.md) +- [for a national government organization](FIRST%20TLP%20labeled%20document%20examples%20national%20government.md) + + +![](../Attachments/TLP_Impact_matrix_NL.xlsx) + + diff --git a/Corpus/πŸ“šοΈ Literature notes/Examples of measures for different TLP classifications.md b/Corpus/Literature notes/Examples of measures for different TLP classifications.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Examples of measures for different TLP classifications.md rename to Corpus/Literature notes/Examples of measures for different TLP classifications.md diff --git a/Corpus/πŸ“šοΈ Literature notes/FIRST TLP labeled document examples national government.md b/Corpus/Literature notes/FIRST TLP labeled document examples national government.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/FIRST TLP labeled document examples national government.md rename to Corpus/Literature notes/FIRST TLP labeled document examples national government.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Factor Analysis of Information Risk (FAIR).md b/Corpus/Literature notes/Factor Analysis of Information Risk (FAIR).md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Factor Analysis of Information Risk (FAIR).md rename to Corpus/Literature notes/Factor Analysis of Information Risk (FAIR).md diff --git a/Corpus/πŸ“šοΈ Literature notes/Fogg Behavior Model.md b/Corpus/Literature notes/Fogg Behavior Model.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Fogg Behavior Model.md rename to Corpus/Literature notes/Fogg Behavior Model.md diff --git a/Corpus/πŸ“šοΈ Literature notes/How Paperless.io attracted users.md b/Corpus/Literature notes/How Paperless.io attracted users.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/How Paperless.io attracted users.md rename to Corpus/Literature notes/How Paperless.io attracted users.md diff --git a/Corpus/πŸ“šοΈ Literature notes/ISACA Implementing Segregation of Duties 1.pdf b/Corpus/Literature notes/ISACA Implementing Segregation of Duties 1.pdf similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/ISACA Implementing Segregation of Duties 1.pdf rename to Corpus/Literature notes/ISACA Implementing Segregation of Duties 1.pdf diff --git a/Corpus/πŸ“šοΈ Literature notes/Implementing Segregation of Duties ISACA.md b/Corpus/Literature notes/Implementing Segregation of Duties ISACA.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Implementing Segregation of Duties ISACA.md rename to Corpus/Literature notes/Implementing Segregation of Duties ISACA.md diff --git a/Corpus/πŸ“šοΈ Literature notes/InfoSec Metrics.md b/Corpus/Literature notes/InfoSec Metrics.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/InfoSec Metrics.md rename to Corpus/Literature notes/InfoSec Metrics.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Jaquith_2007_1_Defining_Security_Metrics.md b/Corpus/Literature notes/Jaquith_2007_1_Defining_Security_Metrics.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Jaquith_2007_1_Defining_Security_Metrics.md rename to Corpus/Literature notes/Jaquith_2007_1_Defining_Security_Metrics.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Jaquith_2007_2_Diagnosing_Problems_and_Measuring_Technical_Security.md b/Corpus/Literature notes/Jaquith_2007_2_Diagnosing_Problems_and_Measuring_Technical_Security.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Jaquith_2007_2_Diagnosing_Problems_and_Measuring_Technical_Security.md rename to Corpus/Literature notes/Jaquith_2007_2_Diagnosing_Problems_and_Measuring_Technical_Security.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Jaquith_2007_3_Measuring_Program_Effectiveness.md b/Corpus/Literature notes/Jaquith_2007_3_Measuring_Program_Effectiveness.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Jaquith_2007_3_Measuring_Program_Effectiveness.md rename to Corpus/Literature notes/Jaquith_2007_3_Measuring_Program_Effectiveness.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Managing Risks - A New Framework.md b/Corpus/Literature notes/Managing Risks - A New Framework.md similarity index 98% rename from Corpus/πŸ“šοΈ Literature notes/Managing Risks - A New Framework.md rename to Corpus/Literature notes/Managing Risks - A New Framework.md index 14fc32a..ed5a4e1 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Managing Risks - A New Framework.md +++ b/Corpus/Literature notes/Managing Risks - A New Framework.md @@ -38,7 +38,7 @@ Rules about what to do and what not to do won’t help here. In fact, they usual ## Managing the different Risk Categories ### Managing Preventable Risks -See: [Identifying and Managing Preventable Risks](../πŸŽ‡%20Sparks/Identifying%20and%20Managing%20Preventable%20Risks.md) +See: [Identifying and Managing Preventable Risks](../Sparks/Identifying%20and%20Managing%20Preventable%20Risks.md) ### Managing Strategy Risks Over the past 10 years of study, we’ve come across three distinct approaches to managing strategy risks. all three encourage employees to challenge existing assumptions and debate risk information. Which model is appropriate for a given firm depends largely on the context in which an organization operates. diff --git a/Corpus/πŸ“šοΈ Literature notes/Mapping NIST Controls to ISO Standards.md b/Corpus/Literature notes/Mapping NIST Controls to ISO Standards.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Mapping NIST Controls to ISO Standards.md rename to Corpus/Literature notes/Mapping NIST Controls to ISO Standards.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Maturity Models.md b/Corpus/Literature notes/Maturity Models.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Maturity Models.md rename to Corpus/Literature notes/Maturity Models.md diff --git a/Corpus/πŸ“šοΈ Literature notes/NIST Asset Types.md b/Corpus/Literature notes/NIST Asset Types.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/NIST Asset Types.md rename to Corpus/Literature notes/NIST Asset Types.md diff --git a/Corpus/πŸ“šοΈ Literature notes/NSA Network Security Guidance.md b/Corpus/Literature notes/NSA Network Security Guidance.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/NSA Network Security Guidance.md rename to Corpus/Literature notes/NSA Network Security Guidance.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Open Cybersecurity Schema Framework.md b/Corpus/Literature notes/Open Cybersecurity Schema Framework.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Open Cybersecurity Schema Framework.md rename to Corpus/Literature notes/Open Cybersecurity Schema Framework.md diff --git a/Corpus/πŸ“šοΈ Literature notes/PANOPTIC-MTR.517c2bf5fd91f93354aa.pdf b/Corpus/Literature notes/PANOPTIC-MTR.517c2bf5fd91f93354aa.pdf similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/PANOPTIC-MTR.517c2bf5fd91f93354aa.pdf rename to Corpus/Literature notes/PANOPTIC-MTR.517c2bf5fd91f93354aa.pdf diff --git a/Corpus/πŸ“šοΈ Literature notes/PANOPTIC_version_1.b6b9783933c97d02395e.xlsx b/Corpus/Literature notes/PANOPTIC_version_1.b6b9783933c97d02395e.xlsx similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/PANOPTIC_version_1.b6b9783933c97d02395e.xlsx rename to Corpus/Literature notes/PANOPTIC_version_1.b6b9783933c97d02395e.xlsx diff --git a/Corpus/πŸ“šοΈ Literature notes/PRAGMATIC_security_metrics_examples.xlsx b/Corpus/Literature notes/PRAGMATIC_security_metrics_examples.xlsx similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/PRAGMATIC_security_metrics_examples.xlsx rename to Corpus/Literature notes/PRAGMATIC_security_metrics_examples.xlsx diff --git a/Corpus/πŸ“šοΈ Literature notes/Pasted image 20240213123920.png b/Corpus/Literature notes/Pasted image 20240213123920.png similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Pasted image 20240213123920.png rename to Corpus/Literature notes/Pasted image 20240213123920.png diff --git a/Corpus/πŸ“šοΈ Literature notes/Policies.md b/Corpus/Literature notes/Policies.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Policies.md rename to Corpus/Literature notes/Policies.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Privacy Threat Modeling.md b/Corpus/Literature notes/Privacy Threat Modeling.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Privacy Threat Modeling.md rename to Corpus/Literature notes/Privacy Threat Modeling.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Privacy in ISO 27k.md b/Corpus/Literature notes/Privacy in ISO 27k.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Privacy in ISO 27k.md rename to Corpus/Literature notes/Privacy in ISO 27k.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Privileged Access Management.md b/Corpus/Literature notes/Privileged Access Management.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Privileged Access Management.md rename to Corpus/Literature notes/Privileged Access Management.md diff --git a/Corpus/πŸ“šοΈ Literature notes/RAVIB dreigingen en maatregelen 2017.xlsx b/Corpus/Literature notes/RAVIB dreigingen en maatregelen 2017.xlsx similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/RAVIB dreigingen en maatregelen 2017.xlsx rename to Corpus/Literature notes/RAVIB dreigingen en maatregelen 2017.xlsx diff --git a/Corpus/πŸ“šοΈ Literature notes/RBAC Access levels.md b/Corpus/Literature notes/RBAC Access levels.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/RBAC Access levels.md rename to Corpus/Literature notes/RBAC Access levels.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Red, Blue, and Purple Teams.md b/Corpus/Literature notes/Red, Blue, and Purple Teams.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Red, Blue, and Purple Teams.md rename to Corpus/Literature notes/Red, Blue, and Purple Teams.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Responsibility assignment matrices.md b/Corpus/Literature notes/Responsibility assignment matrices.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Responsibility assignment matrices.md rename to Corpus/Literature notes/Responsibility assignment matrices.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Roles in Identity and Access Management (IAM).md b/Corpus/Literature notes/Roles in Identity and Access Management (IAM).md similarity index 98% rename from Corpus/πŸ“šοΈ Literature notes/Roles in Identity and Access Management (IAM).md rename to Corpus/Literature notes/Roles in Identity and Access Management (IAM).md index f7c7d17..041da8a 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Roles in Identity and Access Management (IAM).md +++ b/Corpus/Literature notes/Roles in Identity and Access Management (IAM).md @@ -1,4 +1,4 @@ -See also: [Access Control Models](../πŸŽ‡%20Sparks/Access%20Control%20Models.md) +See also: [Access Control Models](../Sparks/Access%20Control%20Models.md) ## Rollen in autorisatiebeheer diff --git a/Corpus/πŸ“šοΈ Literature notes/Roles in Information security management.md b/Corpus/Literature notes/Roles in Information security management.md similarity index 93% rename from Corpus/πŸ“šοΈ Literature notes/Roles in Information security management.md rename to Corpus/Literature notes/Roles in Information security management.md index 0feb4e7..1d66ed6 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Roles in Information security management.md +++ b/Corpus/Literature notes/Roles in Information security management.md @@ -6,14 +6,14 @@ For examples of defined roles, see: - Platform 161, ISP Β§3.6 - Open-ICT - Methode NHC -- [OrgFit Architectuurprincipes Humankind](../../🏭%20Clients/Humankind/OrgFit%20Architectuurprincipes%20Humankind.md) +- [OrgFit Architectuurprincipes Humankind](../../Clients/Humankind/OrgFit%20Architectuurprincipes%20Humankind.md) Related: - [Asset ownership](../πŸŽ‡%20Sparks/Asset%20ownership.md) -- [Control ownership](../πŸŽ‡%20Sparks/Control%20ownership.md) +- [Control ownership](../Sparks/Control%20ownership.md) - [Risk ownership](../πŸŽ‡%20Sparks/Risk%20ownership.md) - [Segregation of Duties](Segregation%20of%20Duties.md) -- [Access Control Models](../πŸŽ‡%20Sparks/Access%20Control%20Models.md) +- [Access Control Models](../Sparks/Access%20Control%20Models.md) **Roles according to CISSP (p. 23 ev.):** * Senior Manager: decides on policies, ultimately responsible. diff --git a/Corpus/πŸ“šοΈ Literature notes/SOD functions.jpg b/Corpus/Literature notes/SOD functions.jpg similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/SOD functions.jpg rename to Corpus/Literature notes/SOD functions.jpg diff --git a/Corpus/πŸ“šοΈ Literature notes/SOD risk scenario matrix.jpg b/Corpus/Literature notes/SOD risk scenario matrix.jpg similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/SOD risk scenario matrix.jpg rename to Corpus/Literature notes/SOD risk scenario matrix.jpg diff --git a/Corpus/πŸ“šοΈ Literature notes/Scratch.md b/Corpus/Literature notes/Scratch.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Scratch.md rename to Corpus/Literature notes/Scratch.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Scrum Roles, Artifacts and Events.md b/Corpus/Literature notes/Scrum Roles, Artifacts and Events.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Scrum Roles, Artifacts and Events.md rename to Corpus/Literature notes/Scrum Roles, Artifacts and Events.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Secure Controls Framework.md b/Corpus/Literature notes/Secure Controls Framework.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Secure Controls Framework.md rename to Corpus/Literature notes/Secure Controls Framework.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Secure SDLC.md b/Corpus/Literature notes/Secure SDLC.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Secure SDLC.md rename to Corpus/Literature notes/Secure SDLC.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Security Metrics by Andrew Jaquith 2007.md b/Corpus/Literature notes/Security Metrics by Andrew Jaquith 2007.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Security Metrics by Andrew Jaquith 2007.md rename to Corpus/Literature notes/Security Metrics by Andrew Jaquith 2007.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Security Metrics that Count – for Twilio.md b/Corpus/Literature notes/Security Metrics that Count – for Twilio.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Security Metrics that Count – for Twilio.md rename to Corpus/Literature notes/Security Metrics that Count – for Twilio.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Security Threat Modeling.md b/Corpus/Literature notes/Security Threat Modeling.md similarity index 54% rename from Corpus/πŸ“šοΈ Literature notes/Security Threat Modeling.md rename to Corpus/Literature notes/Security Threat Modeling.md index 92a147f..8cd6434 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Security Threat Modeling.md +++ b/Corpus/Literature notes/Security Threat Modeling.md @@ -3,7 +3,7 @@ https://insights.sei.cmu.edu/blog/threat-modeling-12-available-methods/ Related: - - [Create a threat analysis chatbot](../πŸ’‘Drafts%20and%20Ideas/Controls/Create%20a%20threat%20analysis%20chatbot.md) + - [Create a threat analysis chatbot](../Drafts%20and%20Ideas/Controls/Create%20a%20threat%20analysis%20chatbot.md) ![700](Threat%20scenario%20elements.jpeg) \ No newline at end of file diff --git a/Corpus/πŸ“šοΈ Literature notes/Security in Development.md b/Corpus/Literature notes/Security in Development.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Security in Development.md rename to Corpus/Literature notes/Security in Development.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Segregation of Duties in Auditing.md b/Corpus/Literature notes/Segregation of Duties in Auditing.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Segregation of Duties in Auditing.md rename to Corpus/Literature notes/Segregation of Duties in Auditing.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Segregation of Duties.md b/Corpus/Literature notes/Segregation of Duties.md similarity index 96% rename from Corpus/πŸ“šοΈ Literature notes/Segregation of Duties.md rename to Corpus/Literature notes/Segregation of Duties.md index a9122cc..350f29a 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Segregation of Duties.md +++ b/Corpus/Literature notes/Segregation of Duties.md @@ -5,7 +5,7 @@ - [a-5.3-Segregation-of-duties](../Standards/ISO27x/OST/27002/EN/a-5.3-Segregation-of-duties.md) - [ISO_27002_2022_5.3_PE Segregation of duties](../../../iso27DIY-gis/reference/Paraphrased/ISO27002-2022-EN/ISO_27002_2022_5.3_PE%20Segregation%20of%20duties.md) - [Typologie Starreveld](Typologie%20Starreveld.md) -- [Trias Politica](../πŸŽ‡%20Sparks/Trias%20Politica.md) +- [Trias Politica](../Sparks/Trias%20Politica.md) Segregation of Duties ensures no single person has enough authority or access to compromise the system or data on their own. diff --git a/Corpus/πŸ“šοΈ Literature notes/Setting up a Successful Security Program.md b/Corpus/Literature notes/Setting up a Successful Security Program.md similarity index 98% rename from Corpus/πŸ“šοΈ Literature notes/Setting up a Successful Security Program.md rename to Corpus/Literature notes/Setting up a Successful Security Program.md index 04ca19a..cca3405 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Setting up a Successful Security Program.md +++ b/Corpus/Literature notes/Setting up a Successful Security Program.md @@ -64,7 +64,7 @@ Drive for at least 4 lines of funding: You will either inherit or have to build a team. The mission changes all the time and so should the team. Establish a talent development program to build a solid leadership pipeline for the future. Related: -- [Organizing Cybersecurity](../πŸŽ‡%20Sparks/Organizing%20Cybersecurity.md) +- [Organizing Cybersecurity](../Sparks/Organizing%20Cybersecurity.md) ### Build relationships - find and realize business benefits, be commercial and mission aligned to ensure support from business management diff --git a/Corpus/πŸ“šοΈ Literature notes/Seven Dimensions of Security Culture.md b/Corpus/Literature notes/Seven Dimensions of Security Culture.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Seven Dimensions of Security Culture.md rename to Corpus/Literature notes/Seven Dimensions of Security Culture.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Single Sign On (SSO).md b/Corpus/Literature notes/Single Sign On (SSO).md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Single Sign On (SSO).md rename to Corpus/Literature notes/Single Sign On (SSO).md diff --git a/Corpus/πŸ“šοΈ Literature notes/Software vulnerability databases.md b/Corpus/Literature notes/Software vulnerability databases.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Software vulnerability databases.md rename to Corpus/Literature notes/Software vulnerability databases.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Table 1 for Managing Risks - A New Framework 1.png b/Corpus/Literature notes/Table 1 for Managing Risks - A New Framework 1.png similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Table 1 for Managing Risks - A New Framework 1.png rename to Corpus/Literature notes/Table 1 for Managing Risks - A New Framework 1.png diff --git a/Corpus/πŸ“šοΈ Literature notes/Target Operational Model.md b/Corpus/Literature notes/Target Operational Model.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Target Operational Model.md rename to Corpus/Literature notes/Target Operational Model.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Theorie van Gepland Gedrag.png b/Corpus/Literature notes/Theorie van Gepland Gedrag.png similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Theorie van Gepland Gedrag.png rename to Corpus/Literature notes/Theorie van Gepland Gedrag.png diff --git a/Corpus/πŸ“šοΈ Literature notes/Theory of planned behavior.md b/Corpus/Literature notes/Theory of planned behavior.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Theory of planned behavior.md rename to Corpus/Literature notes/Theory of planned behavior.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Threat Catalogues.md b/Corpus/Literature notes/Threat Catalogues.md similarity index 89% rename from Corpus/πŸ“šοΈ Literature notes/Threat Catalogues.md rename to Corpus/Literature notes/Threat Catalogues.md index 836ba1e..e0122af 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Threat Catalogues.md +++ b/Corpus/Literature notes/Threat Catalogues.md @@ -24,5 +24,5 @@ LINDDUN GO OWASP RISMAN -Data Maturity Models, zie [Data maturity model NL overheid](../πŸŽ‡%20Sparks/Data%20maturity%20model%20NL%20overheid.md) +Data Maturity Models, zie [Data maturity model NL overheid](../Sparks/Data%20maturity%20model%20NL%20overheid.md) diff --git a/Corpus/πŸ“šοΈ Literature notes/Threat scenario elements.jpeg b/Corpus/Literature notes/Threat scenario elements.jpeg similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Threat scenario elements.jpeg rename to Corpus/Literature notes/Threat scenario elements.jpeg diff --git a/Corpus/πŸ“šοΈ Literature notes/Threat.md b/Corpus/Literature notes/Threat.md similarity index 86% rename from Corpus/πŸ“šοΈ Literature notes/Threat.md rename to Corpus/Literature notes/Threat.md index 40f8d97..3130569 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Threat.md +++ b/Corpus/Literature notes/Threat.md @@ -1,7 +1,7 @@ [Risks vs Threats vs Vulnerabilities](../πŸŽ‡%20Sparks/Risks%20vs%20Threats%20vs%20Vulnerabilities.md) [Threat Intelligence](../πŸŽ‡%20Sparks/Threat%20Intelligence.md) -[Threat intelligence sources](../πŸŽ‡%20Sparks/Threat%20intelligence%20sources.md) +[Threat intelligence sources](../Sparks/Threat%20intelligence%20sources.md) [Threat Modeling](Security%20Threat%20Modeling.md) [Threat Catalogues](Threat%20Catalogues.md) [SCF Threat Categories for Establishing a Threat Catalog](../Standards/other/SCF%20Threat%20Categories%20for%20Establishing%20a%20Threat%20Catalog.md) diff --git a/Corpus/πŸ“šοΈ Literature notes/Three-tier-information-handling-scheme.png b/Corpus/Literature notes/Three-tier-information-handling-scheme.png similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Three-tier-information-handling-scheme.png rename to Corpus/Literature notes/Three-tier-information-handling-scheme.png diff --git a/Corpus/πŸ“šοΈ Literature notes/Topical InfoSec Kanban’s.md b/Corpus/Literature notes/Topical InfoSec Kanban’s.md similarity index 89% rename from Corpus/πŸ“šοΈ Literature notes/Topical InfoSec Kanban’s.md rename to Corpus/Literature notes/Topical InfoSec Kanban’s.md index 5793f8d..7a36f87 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Topical InfoSec Kanban’s.md +++ b/Corpus/Literature notes/Topical InfoSec Kanban’s.md @@ -1,6 +1,6 @@ The planning function of AuditGlue may take the form of a (series of) Kanban boards. -For inspiration, below is a collection of Kanban boards on information security topics, published by [The Art of Service](../πŸ’‘Drafts%20and%20Ideas/The%20Art%20of%20Service.md). Offering Kanban's in cooperation with them should be considered. +For inspiration, below is a collection of Kanban boards on information security topics, published by [The Art of Service](../Drafts%20and%20Ideas/The%20Art%20of%20Service.md). Offering Kanban's in cooperation with them should be considered. Note that these boards where created with Airtable.com. @@ -30,7 +30,7 @@ Note that these boards where created with Airtable.com. ### Related notes: - [πŸ“Ό ISO27DIY Video Series](../Standards/ISO27x/legacy/iso27DIY%20mk%20I/πŸ“Ό%20ISO27DIY%20Video%20Series.md) - [ISO27DIY Additional resources](../Standards/ISO27x/legacy/iso27DIY%20mk%20I/ISO27DIY%20Additional%20resources.md) -- [List of possible partners](../πŸ’‘Drafts%20and%20Ideas/List%20of%20possible%20partners.md) +- [List of possible partners](../Drafts%20and%20Ideas/List%20of%20possible%20partners.md) - [ISO27DIY Workshop Overview template](../Standards/ISO27x/legacy/iso27DIY%20mk%20I/πŸ“’%20Templates/ISO27DIY%20Workshop%20Overview%20template.md) - [Advised Documents for ISO 27001](../../../iso27DIY-gis/reference/Advised%20Documents%20for%20ISO%2027001.md) - [πŸ’Ύ AuditGlue software](../Standards/ISO27x/legacy/iso27DIY%20mk%20I/πŸ’Ύ%20AuditGlue%20software.md) diff --git a/Corpus/πŸ“šοΈ Literature notes/Traffic Light Protocol TLP.md b/Corpus/Literature notes/Traffic Light Protocol TLP.md similarity index 98% rename from Corpus/πŸ“šοΈ Literature notes/Traffic Light Protocol TLP.md rename to Corpus/Literature notes/Traffic Light Protocol TLP.md index 5e0510f..c1f0f6a 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Traffic Light Protocol TLP.md +++ b/Corpus/Literature notes/Traffic Light Protocol TLP.md @@ -5,7 +5,7 @@ or: the FIRST TLP protocol TLP provides a simple and intuitive schema for indicating when and how sensitive information can be shared, facilitating more frequent and effective collaboration. It employs four colors to indicate expected sharing boundaries to be applied by the recipient(s). ([source](https://www.cisa.gov/news-events/news/traffic-light-protocol-tlp-definitions-and-usage)) -![](../πŸ“Ž%20Attachments/TLP_Impact_matrix_NL.xlsx) +![](../Attachments/TLP_Impact_matrix_NL.xlsx) [Examples of TLP document classification for different industries](Examples%20of%20TLP%20document%20classification%20for%20different%20industries.md) diff --git a/Corpus/πŸ“šοΈ Literature notes/Transfer in Risk Treatment.md b/Corpus/Literature notes/Transfer in Risk Treatment.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Transfer in Risk Treatment.md rename to Corpus/Literature notes/Transfer in Risk Treatment.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Treating vendors as a risk.md b/Corpus/Literature notes/Treating vendors as a risk.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Treating vendors as a risk.md rename to Corpus/Literature notes/Treating vendors as a risk.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Types of SSO.md b/Corpus/Literature notes/Types of SSO.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Types of SSO.md rename to Corpus/Literature notes/Types of SSO.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Types_of_Priviledge_Accounts.jpeg b/Corpus/Literature notes/Types_of_Priviledge_Accounts.jpeg similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Types_of_Priviledge_Accounts.jpeg rename to Corpus/Literature notes/Types_of_Priviledge_Accounts.jpeg diff --git a/Corpus/πŸ“šοΈ Literature notes/Typologie Starreveld.md b/Corpus/Literature notes/Typologie Starreveld.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Typologie Starreveld.md rename to Corpus/Literature notes/Typologie Starreveld.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Understanding OCSF August 2022 v1.8 1.pdf b/Corpus/Literature notes/Understanding OCSF August 2022 v1.8 1.pdf similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Understanding OCSF August 2022 v1.8 1.pdf rename to Corpus/Literature notes/Understanding OCSF August 2022 v1.8 1.pdf diff --git a/Corpus/πŸ“šοΈ Literature notes/Voorbeelden van maatregelen bij verschillende TLP classificaties.md b/Corpus/Literature notes/Voorbeelden van maatregelen bij verschillende TLP classificaties.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/Voorbeelden van maatregelen bij verschillende TLP classificaties.md rename to Corpus/Literature notes/Voorbeelden van maatregelen bij verschillende TLP classificaties.md diff --git a/Corpus/πŸ“šοΈ Literature notes/Zero Trust.md b/Corpus/Literature notes/Zero Trust.md similarity index 90% rename from Corpus/πŸ“šοΈ Literature notes/Zero Trust.md rename to Corpus/Literature notes/Zero Trust.md index 6b6cc77..5496d73 100644 --- a/Corpus/πŸ“šοΈ Literature notes/Zero Trust.md +++ b/Corpus/Literature notes/Zero Trust.md @@ -10,5 +10,5 @@ Zero trust is an approach to cybersecurity that assumes that no one is trusted b Zero trust can consist of monitoring all network communications, avoiding default configurations, tracking all devices, and implementing multifactor authentication. Related: -- [Zero Trust and ISO 27001](../πŸŽ‡%20Sparks/Zero%20Trust%20and%20ISO%2027001.md) +- [Zero Trust and ISO 27001](../Sparks/Zero%20Trust%20and%20ISO%2027001.md) - [Checklist for auditing Zero Trust approach](Checklists%20Gerardus%20Blokdyk/Checklist%20for%20auditing%20Zero%20Trust%20approach.md) \ No newline at end of file diff --git a/Corpus/πŸ“šοΈ Literature notes/secure_data_lifecycle.jpeg b/Corpus/Literature notes/secure_data_lifecycle.jpeg similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/secure_data_lifecycle.jpeg rename to Corpus/Literature notes/secure_data_lifecycle.jpeg diff --git a/Corpus/πŸ“šοΈ Literature notes/single-sign-on-info.jpg b/Corpus/Literature notes/single-sign-on-info.jpg similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/single-sign-on-info.jpg rename to Corpus/Literature notes/single-sign-on-info.jpg diff --git a/Corpus/πŸ“šοΈ Literature notes/techsci-datatags-sweeneycrosasbarsinai.pdf b/Corpus/Literature notes/techsci-datatags-sweeneycrosasbarsinai.pdf similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/techsci-datatags-sweeneycrosasbarsinai.pdf rename to Corpus/Literature notes/techsci-datatags-sweeneycrosasbarsinai.pdf diff --git a/Corpus/πŸ“šοΈ Literature notes/wet- en regelgeving kinderopvang.md b/Corpus/Literature notes/wet- en regelgeving kinderopvang.md similarity index 100% rename from Corpus/πŸ“šοΈ Literature notes/wet- en regelgeving kinderopvang.md rename to Corpus/Literature notes/wet- en regelgeving kinderopvang.md diff --git a/Corpus/MoCs/ISO_27001_2022_4.3_MoC Determining the scope of the information security management system.md b/Corpus/MoCs/ISO_27001_2022_4.3_MoC Determining the scope of the information security management system.md index bfec27a..2219fe5 100644 --- a/Corpus/MoCs/ISO_27001_2022_4.3_MoC Determining the scope of the information security management system.md +++ b/Corpus/MoCs/ISO_27001_2022_4.3_MoC Determining the scope of the information security management system.md @@ -4,6 +4,6 @@ [[ISO_27001_PE 4.3 Determining the scope of the information security management system\|Plain English]] -[About the Statement of Applicability](../πŸ’‘Drafts%20and%20Ideas/ISMS/About%20the%20Statement%20of%20Applicability.md) +[About the Statement of Applicability](../Drafts%20and%20Ideas/ISMS/About%20the%20Statement%20of%20Applicability.md) [PECB Auditor training: Context of the organization](../Standards/ISO27x/PECB-Lead-Auditor-Training/PECB%2027001%20LA%20S05%20E01a%20-%20Context%20of%20the%20organization.md) \ No newline at end of file diff --git a/Corpus/MoCs/ISO_27001_2022_6.1.3_MoC Information security risk treatment.md b/Corpus/MoCs/ISO_27001_2022_6.1.3_MoC Information security risk treatment.md index 13dbfa2..89a8b55 100644 --- a/Corpus/MoCs/ISO_27001_2022_6.1.3_MoC Information security risk treatment.md +++ b/Corpus/MoCs/ISO_27001_2022_6.1.3_MoC Information security risk treatment.md @@ -3,4 +3,4 @@ - [Original Text](../ISO-27001-OST/ISO27001-EN-2022/ISO_27001_OT%206.1.3%20Information%20security%20risk%20treatment.md) - [[ISO_27001_PE 6.1.3 Information security risk treatment\|Plain English]] -[About the Statement of Applicability](../πŸ’‘Drafts%20and%20Ideas/ISMS/About%20the%20Statement%20of%20Applicability.md) +[About the Statement of Applicability](../Drafts%20and%20Ideas/ISMS/About%20the%20Statement%20of%20Applicability.md) diff --git a/Corpus/MoCs/ISO_27002_2022_5.17_MoC Authentication information.md b/Corpus/MoCs/ISO_27002_2022_5.17_MoC Authentication information.md index d243baf..585c6c1 100644 --- a/Corpus/MoCs/ISO_27002_2022_5.17_MoC Authentication information.md +++ b/Corpus/MoCs/ISO_27002_2022_5.17_MoC Authentication information.md @@ -11,7 +11,7 @@ ISO 27002:2013: 09.2.4, 09.3.1, 09.4.3 -[Sterke wachtwoorden in 2024](../πŸŽ‡%20Sparks/Sterke%20wachtwoorden%20in%202024.md) +[Sterke wachtwoorden in 2024](../Sparks/Sterke%20wachtwoorden%20in%202024.md) **NCSC over authenticeren** - [Authenticatie als onderdeel van Digitale Weerbaarheid](https://www.ncsc.nl/wat-kun-je-zelf-doen/weerbaarheid/beschermen/authenticatie) diff --git a/Corpus/MoCs/iso27DIY-MoC.md b/Corpus/MoCs/iso27DIY-MoC.md index c0a1910..3756f24 100644 --- a/Corpus/MoCs/iso27DIY-MoC.md +++ b/Corpus/MoCs/iso27DIY-MoC.md @@ -15,45 +15,45 @@ tags: ## Marketing -[Pricing](../πŸŽ‡%20Sparks/The%20Psychology%20Behind%20SaaS%20Pricing.md) +[Pricing](../Sparks/The%20Psychology%20Behind%20SaaS%20Pricing.md) [[Pricing Tiers for iso27DIY|Tiers]] [[SEO guide for Carrd|Website SEO]] -[Idea Validation](../πŸŽ‡%20Sparks/Idea%20Validation.md) +[Idea Validation](../Sparks/Idea%20Validation.md) ## Method -[Samenhang tussen producten](../πŸŽ‡%20Sparks/Samenhang%20tussen%20producten.md) +[Samenhang tussen producten](../Sparks/Samenhang%20tussen%20producten.md) [ISO 27001 2023 Processen en Artefacten](../Standards/ISO27x/OST/ISO%2027001%202023%20Processen%20en%20Artefacten.md) [Advised Documents for ISO 27001](../iso27DIY-gis/reference/Advised%20Documents%20for%20ISO%2027001.md) -[Examples of Proof for auditors](../πŸŽ‡%20Sparks/Examples%20of%20Proof%20for%20auditors.md) +[Examples of Proof for auditors](../Sparks/Examples%20of%20Proof%20for%20auditors.md) [About ISO27DIY Policy Cards](../πŸ’‘Permanent%20ideas/About%20ISO27DIY%20Policy%20Cards.md) ## Design [Modules Canvas](../../AuditGlue/iso27DIY%20content%20modules.canvas) -[About the flow](../πŸ’‘Drafts%20and%20Ideas/About%20iso27diy/About%20the%20flow.md) +[About the flow](../Drafts%20and%20Ideas/About%20iso27diy/About%20the%20flow.md) [UI ideas](AuditGlue/System%20alternative/iso27DIY%20UI%20ideas.md) ### Agents -[Create a proactive conversational agent](../πŸŽ‡%20Sparks/Create%20a%20proactive%20conversational%20agent.md) -[Create an interview agent](../πŸŽ‡%20Sparks/Create%20an%20interview%20agent.md) +[Create a proactive conversational agent](../Sparks/Create%20a%20proactive%20conversational%20agent.md) +[Create an interview agent](../Sparks/Create%20an%20interview%20agent.md) [Agent Design Intent Card](AuditGlue/System%20alternative/Agent%20Design%20Intent%20Card.md) -[Create a threat analysis chatbot](../πŸ’‘Drafts%20and%20Ideas/Controls/Create%20a%20threat%20analysis%20chatbot.md) -[Instruct an LLM on available tools](../πŸŽ‡%20Sparks/Instruct%20an%20LLM%20on%20available%20tools.md) -[LLM Prompt types](../πŸŽ‡%20Sparks/LLM%20Prompt%20types.md) +[Create a threat analysis chatbot](../Drafts%20and%20Ideas/Controls/Create%20a%20threat%20analysis%20chatbot.md) +[Instruct an LLM on available tools](../Sparks/Instruct%20an%20LLM%20on%20available%20tools.md) +[LLM Prompt types](../Sparks/LLM%20Prompt%20types.md) ## Content [ISO27DIY Videos list](../🧱%20Projects/iso27DIY%20mk%20I/ISO27DIY%20Videos%20list.md) ## Platform -[Design Document for ISO 27001 Certification Support Online Service](../πŸŽ‡%20Sparks/Design%20Document%20for%20ISO%2027001%20Certification%20Support%20Online%20Service.md) -[Personae and Roles](../πŸŽ‡%20Sparks/Personae%20and%20Roles.md) -[TypeDB structure for ISO27DIY](../πŸŽ‡%20Sparks/TypeDB%20structure%20for%20ISO27DIY.md) -[Client segregation](../πŸŽ‡%20Sparks/Client%20segregation.md) -[Building functionality in Supabase](../πŸŽ‡%20Sparks/Building%20functionality%20in%20Supabase.md) -[SupaBase edge functions portability](../πŸŽ‡%20Sparks/SupaBase%20edge%20functions%20portability.md) -[Connect LLM to Supabase to create content](../πŸŽ‡%20Sparks/Connect%20LLM%20to%20Supabase%20to%20create%20content.md) -[Deciding which functionality goes where](../πŸŽ‡%20Sparks/Deciding%20which%20functionality%20goes%20where.md) +[Design Document for ISO 27001 Certification Support Online Service](../Sparks/Design%20Document%20for%20ISO%2027001%20Certification%20Support%20Online%20Service.md) +[Personae and Roles](../Sparks/Personae%20and%20Roles.md) +[TypeDB structure for ISO27DIY](../Sparks/TypeDB%20structure%20for%20ISO27DIY.md) +[Client segregation](../Sparks/Client%20segregation.md) +[Building functionality in Supabase](../Sparks/Building%20functionality%20in%20Supabase.md) +[SupaBase edge functions portability](../Sparks/SupaBase%20edge%20functions%20portability.md) +[Connect LLM to Supabase to create content](../Sparks/Connect%20LLM%20to%20Supabase%20to%20create%20content.md) +[Deciding which functionality goes where](../Sparks/Deciding%20which%20functionality%20goes%20where.md) [iso27DYI architecture with LLM](AuditGlue/System%20alternative/iso27DYI%20architecture%20with%20LLM.md) [iso27DIY stack deployment](AuditGlue/System%20alternative/iso27DIY%20stack%20deployment.md) -[SurveyJS](../πŸŽ‡%20Sparks/SurveyJS.md) -[WeWeb Security Pre-Launch Checklist](../πŸŽ‡%20Sparks/weweb_security_checklist.md) +[SurveyJS](../Sparks/SurveyJS.md) +[WeWeb Security Pre-Launch Checklist](../Sparks/weweb_security_checklist.md) diff --git a/Corpus/πŸŽ‡ Sparks/2023-scf-risk-management-ecosystem 1.jpg b/Corpus/Sparks/2023-scf-risk-management-ecosystem 1.jpg similarity index 100% rename from Corpus/πŸŽ‡ Sparks/2023-scf-risk-management-ecosystem 1.jpg rename to Corpus/Sparks/2023-scf-risk-management-ecosystem 1.jpg diff --git a/Corpus/πŸŽ‡ Sparks/AI Threat Modeling 2.md b/Corpus/Sparks/AI Threat Modeling 2.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/AI Threat Modeling 2.md rename to Corpus/Sparks/AI Threat Modeling 2.md diff --git a/Corpus/Sparks/AI Threat Modeling.md b/Corpus/Sparks/AI Threat Modeling.md new file mode 100644 index 0000000..7d3058f --- /dev/null +++ b/Corpus/Sparks/AI Threat Modeling.md @@ -0,0 +1 @@ +[Create a threat analysis chatbot](../Drafts%20and%20Ideas/Controls/Create%20a%20threat%20analysis%20chatbot.md) diff --git a/Corpus/πŸŽ‡ Sparks/AVG Rechtsgronden voor verwerking.md b/Corpus/Sparks/AVG Rechtsgronden voor verwerking.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/AVG Rechtsgronden voor verwerking.md rename to Corpus/Sparks/AVG Rechtsgronden voor verwerking.md diff --git a/Corpus/πŸŽ‡ Sparks/About dealing with threats.md b/Corpus/Sparks/About dealing with threats.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/About dealing with threats.md rename to Corpus/Sparks/About dealing with threats.md diff --git a/Corpus/πŸŽ‡ Sparks/Access Control Models.md b/Corpus/Sparks/Access Control Models.md similarity index 97% rename from Corpus/πŸŽ‡ Sparks/Access Control Models.md rename to Corpus/Sparks/Access Control Models.md index 4547d52..dccf5f9 100644 --- a/Corpus/πŸŽ‡ Sparks/Access Control Models.md +++ b/Corpus/Sparks/Access Control Models.md @@ -1,11 +1,11 @@ See also: - [Authorization vs Access Control](Authorization%20vs%20Access%20Control.md) - [Identity and Access Management (IAM)](../πŸ’‘Drafts%20and%20Ideas/Identity%20and%20Access%20Management%20(IAM).md) -- [RBAC Access levels](../πŸ“šοΈ%20Literature%20notes/RBAC%20Access%20levels.md) +- [RBAC Access levels](../Literature%20notes/RBAC%20Access%20levels.md) - [CRUD Matrices](CRUD%20Matrices.md) -Source: [](../πŸ“Ž%20Attachments/Certified%20Ethical%20Hacker%20Exam%20Guide%202021.pdf) +Source: [](../Attachments/Certified%20Ethical%20Hacker%20Exam%20Guide%202021.pdf) - Mandatory Access Control (MAC): - Every object gets a label diff --git a/Corpus/πŸŽ‡ Sparks/Access Control in ISO 27001.md b/Corpus/Sparks/Access Control in ISO 27001.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Access Control in ISO 27001.md rename to Corpus/Sparks/Access Control in ISO 27001.md diff --git a/Corpus/πŸŽ‡ Sparks/Access Control.md b/Corpus/Sparks/Access Control.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Access Control.md rename to Corpus/Sparks/Access Control.md diff --git a/Corpus/πŸŽ‡ Sparks/Application Security for Vibe Coding.md b/Corpus/Sparks/Application Security for Vibe Coding.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Application Security for Vibe Coding.md rename to Corpus/Sparks/Application Security for Vibe Coding.md diff --git a/Corpus/Sparks/Artikel 39 Taken van de functionaris voor gegevensbescherming.md b/Corpus/Sparks/Artikel 39 Taken van de functionaris voor gegevensbescherming.md new file mode 100644 index 0000000..d51c94b --- /dev/null +++ b/Corpus/Sparks/Artikel 39 Taken van de functionaris voor gegevensbescherming.md @@ -0,0 +1,2 @@ +Zie ook: [DPOaaS offer Glownexus](../Literature%20notes/DPOaaS%20offer%20Glownexus.md) + diff --git a/Corpus/πŸŽ‡ Sparks/Assembling a Project Team.md b/Corpus/Sparks/Assembling a Project Team.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Assembling a Project Team.md rename to Corpus/Sparks/Assembling a Project Team.md diff --git a/Corpus/πŸŽ‡ Sparks/Assessing reputational risks.md b/Corpus/Sparks/Assessing reputational risks.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Assessing reputational risks.md rename to Corpus/Sparks/Assessing reputational risks.md diff --git a/Corpus/πŸŽ‡ Sparks/Asset classes.png b/Corpus/Sparks/Asset classes.png similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Asset classes.png rename to Corpus/Sparks/Asset classes.png diff --git a/Corpus/πŸŽ‡ Sparks/Asset ownership policy of RUMC.md b/Corpus/Sparks/Asset ownership policy of RUMC.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Asset ownership policy of RUMC.md rename to Corpus/Sparks/Asset ownership policy of RUMC.md diff --git a/Corpus/πŸŽ‡ Sparks/Asset ownership.md b/Corpus/Sparks/Asset ownership.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Asset ownership.md rename to Corpus/Sparks/Asset ownership.md diff --git a/Corpus/πŸŽ‡ Sparks/Assets, Vulnerabilities, Threats, Risks.md b/Corpus/Sparks/Assets, Vulnerabilities, Threats, Risks.md similarity index 87% rename from Corpus/πŸŽ‡ Sparks/Assets, Vulnerabilities, Threats, Risks.md rename to Corpus/Sparks/Assets, Vulnerabilities, Threats, Risks.md index 339648e..11e2574 100644 --- a/Corpus/πŸŽ‡ Sparks/Assets, Vulnerabilities, Threats, Risks.md +++ b/Corpus/Sparks/Assets, Vulnerabilities, Threats, Risks.md @@ -7,4 +7,4 @@ [Threat](../πŸ“šοΈ%20Literature%20notes/Threat.md) [Risks](Risks.md) -See also: [](../πŸ“Ž%20Attachments/Certified%20Ethical%20Hacker%20Exam%20Guide%202021.pdf) +See also: [](../Attachments/Certified%20Ethical%20Hacker%20Exam%20Guide%202021.pdf) diff --git a/Corpus/πŸŽ‡ Sparks/Assets.md b/Corpus/Sparks/Assets.md similarity index 95% rename from Corpus/πŸŽ‡ Sparks/Assets.md rename to Corpus/Sparks/Assets.md index 0368fd8..074e5eb 100644 --- a/Corpus/πŸŽ‡ Sparks/Assets.md +++ b/Corpus/Sparks/Assets.md @@ -27,5 +27,5 @@ In essence, an information asset is a piece of information that holds value and - [Asset lifecycle in the Defensive Security Handbook](../πŸ“šοΈ%20Literature%20notes/Asset%20lifecycle.md) - [Asset ownership](Asset%20ownership.md) - [How to develop an Asset Inventory](How%20to%20develop%20an%20Asset%20Inventory.md) -- [Asset management in the Defensive Security Handbook](../πŸ“šοΈ%20Literature%20notes/Def_Sec_Handbook_Chapter_2.md) +- [Asset management in the Defensive Security Handbook](../Literature%20notes/Def_Sec_Handbook_Chapter_2.md) diff --git a/Corpus/πŸŽ‡ Sparks/Auditors little helper.md b/Corpus/Sparks/Auditors little helper.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Auditors little helper.md rename to Corpus/Sparks/Auditors little helper.md diff --git a/Corpus/πŸŽ‡ Sparks/Authorization vs Access Control.md b/Corpus/Sparks/Authorization vs Access Control.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Authorization vs Access Control.md rename to Corpus/Sparks/Authorization vs Access Control.md diff --git a/Corpus/Sparks/Awareness.md b/Corpus/Sparks/Awareness.md new file mode 100644 index 0000000..f729e60 --- /dev/null +++ b/Corpus/Sparks/Awareness.md @@ -0,0 +1,2 @@ +[Seven Dimensions of Security Culture](../Literature%20notes/Seven%20Dimensions%20of%20Security%20Culture.md) + diff --git a/Corpus/πŸŽ‡ Sparks/Belang van een BCP.md b/Corpus/Sparks/Belang van een BCP.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Belang van een BCP.md rename to Corpus/Sparks/Belang van een BCP.md diff --git a/Corpus/πŸŽ‡ Sparks/Blurbs.md b/Corpus/Sparks/Blurbs.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Blurbs.md rename to Corpus/Sparks/Blurbs.md diff --git a/Corpus/πŸŽ‡ Sparks/Bolt.new prompt.md b/Corpus/Sparks/Bolt.new prompt.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Bolt.new prompt.md rename to Corpus/Sparks/Bolt.new prompt.md diff --git a/Corpus/πŸŽ‡ Sparks/Borging.md b/Corpus/Sparks/Borging.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Borging.md rename to Corpus/Sparks/Borging.md diff --git a/Corpus/πŸŽ‡ Sparks/Break-glass account.md b/Corpus/Sparks/Break-glass account.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Break-glass account.md rename to Corpus/Sparks/Break-glass account.md diff --git a/Corpus/πŸŽ‡ Sparks/Bug bounty program.md b/Corpus/Sparks/Bug bounty program.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Bug bounty program.md rename to Corpus/Sparks/Bug bounty program.md diff --git a/Corpus/πŸŽ‡ Sparks/Building functionality in Supabase.md b/Corpus/Sparks/Building functionality in Supabase.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Building functionality in Supabase.md rename to Corpus/Sparks/Building functionality in Supabase.md diff --git a/Corpus/πŸŽ‡ Sparks/Business Impact Analysis (BIA).md b/Corpus/Sparks/Business Impact Analysis (BIA).md similarity index 94% rename from Corpus/πŸŽ‡ Sparks/Business Impact Analysis (BIA).md rename to Corpus/Sparks/Business Impact Analysis (BIA).md index cd8c5cb..4d3b745 100644 --- a/Corpus/πŸŽ‡ Sparks/Business Impact Analysis (BIA).md +++ b/Corpus/Sparks/Business Impact Analysis (BIA).md @@ -9,7 +9,7 @@ Guidelines and tooling: - [Guidelines for business impact analysis ISO 22317](../Standards/ISO27x/ISO%2022317%20Guidelines%20for%20business%20impact%20analysis.md) - [Assessing reputational risks](Assessing%20reputational%20risks.md) - [BIA Workshop](../Standards/ISO27x/Implementation%20Products/BIA%20Workshop.md) -- [TLP impact matrix](../πŸ“šοΈ%20Literature%20notes/Traffic%20Light%20Protocol%20TLP.md) +- [TLP impact matrix](../Literature%20notes/Traffic%20Light%20Protocol%20TLP.md) - Afhankelijkheid tussen systemen/voorzieningen? - Resource Breakdown Structure (RBS) - Fishbone Diagram (Ishikawa/Cause and Effect): Useful for identifying root causes of dependencies and resource constraints in processes. diff --git a/Corpus/πŸŽ‡ Sparks/C4 model for software development/C1-example.png.avif b/Corpus/Sparks/C4 model for software development/C1-example.png.avif similarity index 100% rename from Corpus/πŸŽ‡ Sparks/C4 model for software development/C1-example.png.avif rename to Corpus/Sparks/C4 model for software development/C1-example.png.avif diff --git a/Corpus/πŸŽ‡ Sparks/C4 model for software development/C1-example2 1.png b/Corpus/Sparks/C4 model for software development/C1-example2 1.png similarity index 100% rename from Corpus/πŸŽ‡ Sparks/C4 model for software development/C1-example2 1.png rename to Corpus/Sparks/C4 model for software development/C1-example2 1.png diff --git a/Corpus/πŸŽ‡ Sparks/C4 model for software development/C2-example.png b/Corpus/Sparks/C4 model for software development/C2-example.png similarity index 100% rename from Corpus/πŸŽ‡ Sparks/C4 model for software development/C2-example.png rename to Corpus/Sparks/C4 model for software development/C2-example.png diff --git a/Corpus/πŸŽ‡ Sparks/C4 model for software development/C2-example2.png b/Corpus/Sparks/C4 model for software development/C2-example2.png similarity index 100% rename from Corpus/πŸŽ‡ Sparks/C4 model for software development/C2-example2.png rename to Corpus/Sparks/C4 model for software development/C2-example2.png diff --git a/Corpus/πŸŽ‡ Sparks/C4 model for software development/C3-example.png b/Corpus/Sparks/C4 model for software development/C3-example.png similarity index 100% rename from Corpus/πŸŽ‡ Sparks/C4 model for software development/C3-example.png rename to Corpus/Sparks/C4 model for software development/C3-example.png diff --git a/Corpus/πŸŽ‡ Sparks/C4 model for software development/C3-example2.png b/Corpus/Sparks/C4 model for software development/C3-example2.png similarity index 100% rename from Corpus/πŸŽ‡ Sparks/C4 model for software development/C3-example2.png rename to Corpus/Sparks/C4 model for software development/C3-example2.png diff --git a/Corpus/πŸŽ‡ Sparks/C4 model for software development/C4 model for software architecture.md b/Corpus/Sparks/C4 model for software development/C4 model for software architecture.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/C4 model for software development/C4 model for software architecture.md rename to Corpus/Sparks/C4 model for software development/C4 model for software architecture.md diff --git a/Corpus/πŸŽ‡ Sparks/C4 model for software development/C4-example.png b/Corpus/Sparks/C4 model for software development/C4-example.png similarity index 100% rename from Corpus/πŸŽ‡ Sparks/C4 model for software development/C4-example.png rename to Corpus/Sparks/C4 model for software development/C4-example.png diff --git a/Corpus/πŸŽ‡ Sparks/CERT SG IRM.md b/Corpus/Sparks/CERT SG IRM.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/CERT SG IRM.md rename to Corpus/Sparks/CERT SG IRM.md diff --git a/Corpus/πŸŽ‡ Sparks/CICD pipeline components.md b/Corpus/Sparks/CICD pipeline components.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/CICD pipeline components.md rename to Corpus/Sparks/CICD pipeline components.md diff --git a/Corpus/πŸŽ‡ Sparks/CIS Critical Security Controls.md b/Corpus/Sparks/CIS Critical Security Controls.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/CIS Critical Security Controls.md rename to Corpus/Sparks/CIS Critical Security Controls.md diff --git a/Corpus/πŸŽ‡ Sparks/CRF-Threat-Taxonomy-v2024.pdf b/Corpus/Sparks/CRF-Threat-Taxonomy-v2024.pdf similarity index 100% rename from Corpus/πŸŽ‡ Sparks/CRF-Threat-Taxonomy-v2024.pdf rename to Corpus/Sparks/CRF-Threat-Taxonomy-v2024.pdf diff --git a/Corpus/πŸŽ‡ Sparks/CRUD Matrices.md b/Corpus/Sparks/CRUD Matrices.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/CRUD Matrices.md rename to Corpus/Sparks/CRUD Matrices.md diff --git a/Corpus/πŸŽ‡ Sparks/Carnegie Mellon Taxonomy of Operational Cyber Security Risks Version 2.pdf b/Corpus/Sparks/Carnegie Mellon Taxonomy of Operational Cyber Security Risks Version 2.pdf similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Carnegie Mellon Taxonomy of Operational Cyber Security Risks Version 2.pdf rename to Corpus/Sparks/Carnegie Mellon Taxonomy of Operational Cyber Security Risks Version 2.pdf diff --git a/Corpus/πŸŽ‡ Sparks/Challenges in auditing a one man company.md b/Corpus/Sparks/Challenges in auditing a one man company.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Challenges in auditing a one man company.md rename to Corpus/Sparks/Challenges in auditing a one man company.md diff --git a/Corpus/πŸŽ‡ Sparks/Check op Basisveiligheid Humankind.md b/Corpus/Sparks/Check op Basisveiligheid Humankind.md similarity index 94% rename from Corpus/πŸŽ‡ Sparks/Check op Basisveiligheid Humankind.md rename to Corpus/Sparks/Check op Basisveiligheid Humankind.md index fb33029..ca231d4 100644 --- a/Corpus/πŸŽ‡ Sparks/Check op Basisveiligheid Humankind.md +++ b/Corpus/Sparks/Check op Basisveiligheid Humankind.md @@ -2,7 +2,7 @@ Uit opdracht: "Bescherming tegen actuele *externe* dreigingen". -Dus een [Pentest](../../🏭%20Clients/Humankind/Pentest%20Humankind.md). +Dus een [Pentest](../../Clients/Humankind/Pentest%20Humankind.md). Het andere subject onder de kop "Voorzien in basisveiligheid" is: > Verzekering Beschikbaarheid: backups en noodvoorzieningen, calamiteitenplan diff --git a/Corpus/πŸŽ‡ Sparks/Checklist for Insider Threat Prevention.md b/Corpus/Sparks/Checklist for Insider Threat Prevention.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Checklist for Insider Threat Prevention.md rename to Corpus/Sparks/Checklist for Insider Threat Prevention.md diff --git a/Corpus/πŸŽ‡ Sparks/Classificatie van risico's obv Oorzaken.md b/Corpus/Sparks/Classificatie van risico's obv Oorzaken.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Classificatie van risico's obv Oorzaken.md rename to Corpus/Sparks/Classificatie van risico's obv Oorzaken.md diff --git a/Corpus/πŸŽ‡ Sparks/Classification.md b/Corpus/Sparks/Classification.md similarity index 69% rename from Corpus/πŸŽ‡ Sparks/Classification.md rename to Corpus/Sparks/Classification.md index 057c61d..0feb24d 100644 --- a/Corpus/πŸŽ‡ Sparks/Classification.md +++ b/Corpus/Sparks/Classification.md @@ -5,13 +5,13 @@ Source: [CISSP_OSG_Chapter_5](../Standards/CISSP/CISSP_OSG_Chapter_5.md#Defining Classification criteria should be risk based, for instance on potential damage to the organization, the privacy of individuals, national security, economic interests, or other critical concerns. See also: -[Datatags System](../πŸ“šοΈ%20Literature%20notes/Datatags%20System.md) -[Def_Sec_Handbook_Chapter_2](../πŸ“šοΈ%20Literature%20notes/Def_Sec_Handbook_Chapter_2.md#Information%20classification) +[Datatags System](../Literature%20notes/Datatags%20System.md) +[Def_Sec_Handbook_Chapter_2](../Literature%20notes/Def_Sec_Handbook_Chapter_2.md#Information%20classification) [ISO 27002:2022 NL A5.12](../Standards/ISO27x/OST/27002/NL/a-5.12-Classificeren-van-informatie.md) -[Designing an information management scheme](../πŸ“šοΈ%20Literature%20notes/Designing%20an%20information%20management%20scheme.md) +[Designing an information management scheme](../Literature%20notes/Designing%20an%20information%20management%20scheme.md) [Data classification examples from SANS forum](Data%20classification%20examples%20from%20SANS%20forum.md) [Key Topics for a Classified Information Security Policy](Key%20Topics%20for%20a%20Classified%20Information%20Security%20Policy.md) -[Traffic Light Protocol (TLP)](../πŸ“šοΈ%20Literature%20notes/Traffic%20Light%20Protocol%20TLP.md) +[Traffic Light Protocol (TLP)](../Literature%20notes/Traffic%20Light%20Protocol%20TLP.md) ![](Informatie_classificatie_matrix.xlsx) diff --git a/Corpus/πŸŽ‡ Sparks/Classifying Integrity.md b/Corpus/Sparks/Classifying Integrity.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Classifying Integrity.md rename to Corpus/Sparks/Classifying Integrity.md diff --git a/Corpus/πŸŽ‡ Sparks/CleanShot 2024-10-08 at 16.10.32.png b/Corpus/Sparks/CleanShot 2024-10-08 at 16.10.32.png similarity index 100% rename from Corpus/πŸŽ‡ Sparks/CleanShot 2024-10-08 at 16.10.32.png rename to Corpus/Sparks/CleanShot 2024-10-08 at 16.10.32.png diff --git a/Corpus/πŸŽ‡ Sparks/CleanShot 2024-10-08 at 16.27.06.png b/Corpus/Sparks/CleanShot 2024-10-08 at 16.27.06.png similarity index 100% rename from Corpus/πŸŽ‡ Sparks/CleanShot 2024-10-08 at 16.27.06.png rename to Corpus/Sparks/CleanShot 2024-10-08 at 16.27.06.png diff --git a/Corpus/πŸŽ‡ Sparks/Client segregation.md b/Corpus/Sparks/Client segregation.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Client segregation.md rename to Corpus/Sparks/Client segregation.md diff --git a/Corpus/πŸŽ‡ Sparks/Cloud Service Approval Process.md b/Corpus/Sparks/Cloud Service Approval Process.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Cloud Service Approval Process.md rename to Corpus/Sparks/Cloud Service Approval Process.md diff --git a/Corpus/πŸŽ‡ Sparks/Cloud Service Employee Guidelines.md b/Corpus/Sparks/Cloud Service Employee Guidelines.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Cloud Service Employee Guidelines.md rename to Corpus/Sparks/Cloud Service Employee Guidelines.md diff --git a/Corpus/πŸŽ‡ Sparks/Cloud Service Risk Assessment Guide.md b/Corpus/Sparks/Cloud Service Risk Assessment Guide.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Cloud Service Risk Assessment Guide.md rename to Corpus/Sparks/Cloud Service Risk Assessment Guide.md diff --git a/Corpus/πŸŽ‡ Sparks/Cloud Service Risk Mitigation Roadmap.md b/Corpus/Sparks/Cloud Service Risk Mitigation Roadmap.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Cloud Service Risk Mitigation Roadmap.md rename to Corpus/Sparks/Cloud Service Risk Mitigation Roadmap.md diff --git a/Corpus/πŸŽ‡ Sparks/Compliance.md b/Corpus/Sparks/Compliance.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Compliance.md rename to Corpus/Sparks/Compliance.md diff --git a/Corpus/πŸŽ‡ Sparks/Connect LLM to Supabase to create content.md b/Corpus/Sparks/Connect LLM to Supabase to create content.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Connect LLM to Supabase to create content.md rename to Corpus/Sparks/Connect LLM to Supabase to create content.md diff --git a/Corpus/πŸŽ‡ Sparks/Continuous Compliance products.md b/Corpus/Sparks/Continuous Compliance products.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Continuous Compliance products.md rename to Corpus/Sparks/Continuous Compliance products.md diff --git a/Corpus/πŸŽ‡ Sparks/Control ownership.md b/Corpus/Sparks/Control ownership.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Control ownership.md rename to Corpus/Sparks/Control ownership.md diff --git a/Corpus/πŸŽ‡ Sparks/Core concepts of Privacy.md b/Corpus/Sparks/Core concepts of Privacy.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Core concepts of Privacy.md rename to Corpus/Sparks/Core concepts of Privacy.md diff --git a/Corpus/πŸŽ‡ Sparks/Cracking passwords in 2024.md b/Corpus/Sparks/Cracking passwords in 2024.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Cracking passwords in 2024.md rename to Corpus/Sparks/Cracking passwords in 2024.md diff --git a/Corpus/πŸŽ‡ Sparks/Create a proactive conversational agent.md b/Corpus/Sparks/Create a proactive conversational agent.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Create a proactive conversational agent.md rename to Corpus/Sparks/Create a proactive conversational agent.md diff --git a/Corpus/πŸŽ‡ Sparks/Create an interview agent.md b/Corpus/Sparks/Create an interview agent.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Create an interview agent.md rename to Corpus/Sparks/Create an interview agent.md diff --git a/Corpus/πŸŽ‡ Sparks/Customer Managed Keys.md b/Corpus/Sparks/Customer Managed Keys.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Customer Managed Keys.md rename to Corpus/Sparks/Customer Managed Keys.md diff --git a/Corpus/πŸŽ‡ Sparks/Cyber Security Governance Principles.md b/Corpus/Sparks/Cyber Security Governance Principles.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Cyber Security Governance Principles.md rename to Corpus/Sparks/Cyber Security Governance Principles.md diff --git a/Corpus/πŸŽ‡ Sparks/Cyber Security Governance Principles.pdf b/Corpus/Sparks/Cyber Security Governance Principles.pdf similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Cyber Security Governance Principles.pdf rename to Corpus/Sparks/Cyber Security Governance Principles.pdf diff --git a/Corpus/πŸŽ‡ Sparks/Data Provenance.md b/Corpus/Sparks/Data Provenance.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Data Provenance.md rename to Corpus/Sparks/Data Provenance.md diff --git a/Corpus/πŸŽ‡ Sparks/Data breach procedure.md b/Corpus/Sparks/Data breach procedure.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Data breach procedure.md rename to Corpus/Sparks/Data breach procedure.md diff --git a/Corpus/πŸŽ‡ Sparks/Data classification examples from SANS forum.md b/Corpus/Sparks/Data classification examples from SANS forum.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Data classification examples from SANS forum.md rename to Corpus/Sparks/Data classification examples from SANS forum.md diff --git a/Corpus/πŸŽ‡ Sparks/Data maturity model NL overheid.md b/Corpus/Sparks/Data maturity model NL overheid.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Data maturity model NL overheid.md rename to Corpus/Sparks/Data maturity model NL overheid.md diff --git a/Corpus/πŸŽ‡ Sparks/Deciding which functionality goes where.md b/Corpus/Sparks/Deciding which functionality goes where.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Deciding which functionality goes where.md rename to Corpus/Sparks/Deciding which functionality goes where.md diff --git a/Corpus/πŸŽ‡ Sparks/Definition of Asset.md b/Corpus/Sparks/Definition of Asset.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Definition of Asset.md rename to Corpus/Sparks/Definition of Asset.md diff --git a/Corpus/πŸŽ‡ Sparks/Design Document for ISO 27001 Certification Support Online Service.md b/Corpus/Sparks/Design Document for ISO 27001 Certification Support Online Service.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Design Document for ISO 27001 Certification Support Online Service.md rename to Corpus/Sparks/Design Document for ISO 27001 Certification Support Online Service.md diff --git a/Corpus/πŸŽ‡ Sparks/Design and Planning.md b/Corpus/Sparks/Design and Planning.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Design and Planning.md rename to Corpus/Sparks/Design and Planning.md diff --git a/Corpus/πŸŽ‡ Sparks/Designing an Agent.md b/Corpus/Sparks/Designing an Agent.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Designing an Agent.md rename to Corpus/Sparks/Designing an Agent.md diff --git a/Corpus/πŸŽ‡ Sparks/Detailed comparison between 2017 and 2022.md b/Corpus/Sparks/Detailed comparison between 2017 and 2022.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Detailed comparison between 2017 and 2022.md rename to Corpus/Sparks/Detailed comparison between 2017 and 2022.md diff --git a/Corpus/πŸŽ‡ Sparks/DevSecOps and ISO 27k.md b/Corpus/Sparks/DevSecOps and ISO 27k.md similarity index 81% rename from Corpus/πŸŽ‡ Sparks/DevSecOps and ISO 27k.md rename to Corpus/Sparks/DevSecOps and ISO 27k.md index 71cfec8..067ddd6 100644 --- a/Corpus/πŸŽ‡ Sparks/DevSecOps and ISO 27k.md +++ b/Corpus/Sparks/DevSecOps and ISO 27k.md @@ -4,4 +4,4 @@ How do the controls fit in with DevSecOps? Related: [ISO 27001 A.14.2.8 System security testing](../Standards/ISO27x/legacy/ISO%2027001%202013/ISO%2027001%20A.14.2.8%20System%20security%20testing.md) [ISO 27001 A.14.2.9 System acceptance testing](../Standards/ISO27x/legacy/ISO%2027001%202013/ISO%2027001%20A.14.2.9%20System%20acceptance%20testing.md) -[Red, Blue, and Purple Teams](../πŸ“šοΈ%20Literature%20notes/Red,%20Blue,%20and%20Purple%20Teams.md) \ No newline at end of file +[Red, Blue, and Purple Teams](../Literature%20notes/Red,%20Blue,%20and%20Purple%20Teams.md) \ No newline at end of file diff --git a/Corpus/πŸŽ‡ Sparks/Disaster Recovery Planning.md b/Corpus/Sparks/Disaster Recovery Planning.md similarity index 66% rename from Corpus/πŸŽ‡ Sparks/Disaster Recovery Planning.md rename to Corpus/Sparks/Disaster Recovery Planning.md index d0953ec..7d1a1ed 100644 --- a/Corpus/πŸŽ‡ Sparks/Disaster Recovery Planning.md +++ b/Corpus/Sparks/Disaster Recovery Planning.md @@ -2,6 +2,6 @@ See also: - [a-5.30-ICT-readiness-for-business-continuity](../Standards/ISO27x/OST/27002/EN/a-5.30-ICT-readiness-for-business-continuity.md) - [Business Continuity Planning (BCP)](../πŸ“šοΈ%20Literature%20notes/BCP_BedrijfscontinuΓ―teitsplanning.md) - [SANS Incident Response step 5 Recovery](../Standards/SANS/SANS%20Incident%20Response%20step%205%20Recovery.md) -- [Checklist for auditing Business Continuity and Disaster Recovery](../πŸ“šοΈ%20Literature%20notes/Checklists%20Gerardus%20Blokdyk/Checklist%20for%20auditing%20Business%20Continuity%20and%20Disaster%20Recovery.md) +- [Checklist for auditing Business Continuity and Disaster Recovery](../Literature%20notes/Checklists%20Gerardus%20Blokdyk/Checklist%20for%20auditing%20Business%20Continuity%20and%20Disaster%20Recovery.md) - [CISSP_OSG_Chapter_18](../Standards/CISSP/CISSP_OSG_Chapter_18.md) -- [Def_Sec_Handbook_Chapter_6](../πŸ“šοΈ%20Literature%20notes/Def_Sec_Handbook_Chapter_6.md) +- [Def_Sec_Handbook_Chapter_6](../Literature%20notes/Def_Sec_Handbook_Chapter_6.md) diff --git a/Corpus/πŸŽ‡ Sparks/Elevator Pitch.md b/Corpus/Sparks/Elevator Pitch.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Elevator Pitch.md rename to Corpus/Sparks/Elevator Pitch.md diff --git a/Corpus/πŸŽ‡ Sparks/Example JSON file.md b/Corpus/Sparks/Example JSON file.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Example JSON file.md rename to Corpus/Sparks/Example JSON file.md diff --git a/Corpus/πŸŽ‡ Sparks/Example of ISO 27001 mystique.md b/Corpus/Sparks/Example of ISO 27001 mystique.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Example of ISO 27001 mystique.md rename to Corpus/Sparks/Example of ISO 27001 mystique.md diff --git a/Corpus/πŸŽ‡ Sparks/Examples of Proof for auditors.md b/Corpus/Sparks/Examples of Proof for auditors.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Examples of Proof for auditors.md rename to Corpus/Sparks/Examples of Proof for auditors.md diff --git a/Corpus/πŸŽ‡ Sparks/Examples of Risk Avoidance.md b/Corpus/Sparks/Examples of Risk Avoidance.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Examples of Risk Avoidance.md rename to Corpus/Sparks/Examples of Risk Avoidance.md diff --git a/Corpus/Sparks/Examples of vendor selection questionnaires.md b/Corpus/Sparks/Examples of vendor selection questionnaires.md new file mode 100644 index 0000000..d525cea --- /dev/null +++ b/Corpus/Sparks/Examples of vendor selection questionnaires.md @@ -0,0 +1,5 @@ +- [Dropbox](../Literature%20notes/Dropbox%20Supplier%20Security%20Requirements.md) +- [Google](https://vsaq-demo.withgoogle.com) + +Related: +- [Vendor security MoC](Vendor%20security%20MoC.md) \ No newline at end of file diff --git a/Corpus/πŸŽ‡ Sparks/External audits.md b/Corpus/Sparks/External audits.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/External audits.md rename to Corpus/Sparks/External audits.md diff --git a/Corpus/πŸŽ‡ Sparks/FAIR ISO 27005 Cookbook.pdf b/Corpus/Sparks/FAIR ISO 27005 Cookbook.pdf similarity index 100% rename from Corpus/πŸŽ‡ Sparks/FAIR ISO 27005 Cookbook.pdf rename to Corpus/Sparks/FAIR ISO 27005 Cookbook.pdf diff --git a/Corpus/πŸŽ‡ Sparks/FIRST TLP labeled document examples childcare.md b/Corpus/Sparks/FIRST TLP labeled document examples childcare.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/FIRST TLP labeled document examples childcare.md rename to Corpus/Sparks/FIRST TLP labeled document examples childcare.md diff --git a/Corpus/πŸŽ‡ Sparks/FIRST TLP labeled document examples commercial.md b/Corpus/Sparks/FIRST TLP labeled document examples commercial.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/FIRST TLP labeled document examples commercial.md rename to Corpus/Sparks/FIRST TLP labeled document examples commercial.md diff --git a/Corpus/πŸŽ‡ Sparks/FIRST TLP labeled document examples for information security.md b/Corpus/Sparks/FIRST TLP labeled document examples for information security.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/FIRST TLP labeled document examples for information security.md rename to Corpus/Sparks/FIRST TLP labeled document examples for information security.md diff --git a/Corpus/πŸŽ‡ Sparks/FIRST TLP labeled document examples hospital.md b/Corpus/Sparks/FIRST TLP labeled document examples hospital.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/FIRST TLP labeled document examples hospital.md rename to Corpus/Sparks/FIRST TLP labeled document examples hospital.md diff --git a/Corpus/πŸŽ‡ Sparks/GGUF model for abstracts and categorization.md b/Corpus/Sparks/GGUF model for abstracts and categorization.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/GGUF model for abstracts and categorization.md rename to Corpus/Sparks/GGUF model for abstracts and categorization.md diff --git a/Corpus/πŸŽ‡ Sparks/Gedachten over rechtenstructuren.md b/Corpus/Sparks/Gedachten over rechtenstructuren.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Gedachten over rechtenstructuren.md rename to Corpus/Sparks/Gedachten over rechtenstructuren.md diff --git a/Corpus/πŸŽ‡ Sparks/Governance.md b/Corpus/Sparks/Governance.md similarity index 50% rename from Corpus/πŸŽ‡ Sparks/Governance.md rename to Corpus/Sparks/Governance.md index e15d872..cfb69a8 100644 --- a/Corpus/πŸŽ‡ Sparks/Governance.md +++ b/Corpus/Sparks/Governance.md @@ -1,3 +1,3 @@ [Cyber Security Governance Principles](Cyber%20Security%20Governance%20Principles.md) [Data Governance](../πŸ“šοΈ%20Literature%20notes/Data%20Governance.md) -[Checklist for auditing Data Governance](../πŸ“šοΈ%20Literature%20notes/Checklists%20Gerardus%20Blokdyk/Checklist%20for%20auditing%20Data%20Governance.md) +[Checklist for auditing Data Governance](../Literature%20notes/Checklists%20Gerardus%20Blokdyk/Checklist%20for%20auditing%20Data%20Governance.md) diff --git a/Corpus/πŸŽ‡ Sparks/Handreiking risicobeoordeling 2.o.pdf b/Corpus/Sparks/Handreiking risicobeoordeling 2.o.pdf similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Handreiking risicobeoordeling 2.o.pdf rename to Corpus/Sparks/Handreiking risicobeoordeling 2.o.pdf diff --git a/Corpus/πŸŽ‡ Sparks/Hinsons Green and Read flags.md b/Corpus/Sparks/Hinsons Green and Read flags.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Hinsons Green and Read flags.md rename to Corpus/Sparks/Hinsons Green and Read flags.md diff --git a/Corpus/πŸŽ‡ Sparks/Hive Systems Password Table - 2024 Square.png b/Corpus/Sparks/Hive Systems Password Table - 2024 Square.png similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Hive Systems Password Table - 2024 Square.png rename to Corpus/Sparks/Hive Systems Password Table - 2024 Square.png diff --git a/Corpus/πŸŽ‡ Sparks/Hive Systems Password Table - 2024_Dutch.png b/Corpus/Sparks/Hive Systems Password Table - 2024_Dutch.png similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Hive Systems Password Table - 2024_Dutch.png rename to Corpus/Sparks/Hive Systems Password Table - 2024_Dutch.png diff --git a/Corpus/πŸŽ‡ Sparks/How to develop an Asset Inventory.md b/Corpus/Sparks/How to develop an Asset Inventory.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/How to develop an Asset Inventory.md rename to Corpus/Sparks/How to develop an Asset Inventory.md diff --git a/Corpus/πŸŽ‡ Sparks/How to work the Kanban.md b/Corpus/Sparks/How to work the Kanban.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/How to work the Kanban.md rename to Corpus/Sparks/How to work the Kanban.md diff --git a/Corpus/πŸŽ‡ Sparks/Hyperproof Risk Register Template.xlsx b/Corpus/Sparks/Hyperproof Risk Register Template.xlsx similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Hyperproof Risk Register Template.xlsx rename to Corpus/Sparks/Hyperproof Risk Register Template.xlsx diff --git a/Corpus/πŸŽ‡ Sparks/IMG_4214.jpg b/Corpus/Sparks/IMG_4214.jpg similarity index 100% rename from Corpus/πŸŽ‡ Sparks/IMG_4214.jpg rename to Corpus/Sparks/IMG_4214.jpg diff --git a/Corpus/πŸŽ‡ Sparks/ISO27DIY benefits.md b/Corpus/Sparks/ISO27DIY benefits.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/ISO27DIY benefits.md rename to Corpus/Sparks/ISO27DIY benefits.md diff --git a/Corpus/πŸŽ‡ Sparks/IT dept roles and responsibility frameworks.md b/Corpus/Sparks/IT dept roles and responsibility frameworks.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/IT dept roles and responsibility frameworks.md rename to Corpus/Sparks/IT dept roles and responsibility frameworks.md diff --git a/Corpus/πŸŽ‡ Sparks/Idea Validation.md b/Corpus/Sparks/Idea Validation.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Idea Validation.md rename to Corpus/Sparks/Idea Validation.md diff --git a/Corpus/πŸŽ‡ Sparks/Ideas on Risk Ownership.md b/Corpus/Sparks/Ideas on Risk Ownership.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Ideas on Risk Ownership.md rename to Corpus/Sparks/Ideas on Risk Ownership.md diff --git a/Corpus/πŸŽ‡ Sparks/Identifying and Managing Preventable Risks.md b/Corpus/Sparks/Identifying and Managing Preventable Risks.md similarity index 89% rename from Corpus/πŸŽ‡ Sparks/Identifying and Managing Preventable Risks.md rename to Corpus/Sparks/Identifying and Managing Preventable Risks.md index a8675b2..a98c6a0 100644 --- a/Corpus/πŸŽ‡ Sparks/Identifying and Managing Preventable Risks.md +++ b/Corpus/Sparks/Identifying and Managing Preventable Risks.md @@ -1,4 +1,4 @@ -Sidebar from [Managing Risks - A New Framework](../πŸ“šοΈ%20Literature%20notes/Managing%20Risks%20-%20A%20New%20Framework.md) +Sidebar from [Managing Risks - A New Framework](../Literature%20notes/Managing%20Risks%20-%20A%20New%20Framework.md) Companies cannot anticipate every circumstance or conflict of interest that an employee might encounter. Thus, the first line of defense against preventable risk events is to provide guidelines clarifying the company’s goals and values. diff --git a/Corpus/πŸŽ‡ Sparks/Importance of a BCP.md b/Corpus/Sparks/Importance of a BCP.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Importance of a BCP.md rename to Corpus/Sparks/Importance of a BCP.md diff --git a/Corpus/πŸŽ‡ Sparks/Incident Response Planning.md b/Corpus/Sparks/Incident Response Planning.md similarity index 95% rename from Corpus/πŸŽ‡ Sparks/Incident Response Planning.md rename to Corpus/Sparks/Incident Response Planning.md index f1818fb..5aaa831 100644 --- a/Corpus/πŸŽ‡ Sparks/Incident Response Planning.md +++ b/Corpus/Sparks/Incident Response Planning.md @@ -1,6 +1,6 @@ [SANS Incident Response Plan](../Standards/SANS/SANS%20Incident%20Response%20Plan.md) -[Checklist for auditing Incident Response Plan](../πŸ“šοΈ%20Literature%20notes/Checklists%20Gerardus%20Blokdyk/Checklist%20for%20auditing%20Incident%20Response%20Plan.md) +[Checklist for auditing Incident Response Plan](../Literature%20notes/Checklists%20Gerardus%20Blokdyk/Checklist%20for%20auditing%20Incident%20Response%20Plan.md) See also: - [Ransomware Playbook](Ransomware%20Playbook.md) diff --git a/Corpus/πŸŽ‡ Sparks/Incidents.md b/Corpus/Sparks/Incidents.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Incidents.md rename to Corpus/Sparks/Incidents.md diff --git a/Corpus/πŸŽ‡ Sparks/Informatie_classificatie_matrix.xlsx b/Corpus/Sparks/Informatie_classificatie_matrix.xlsx similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Informatie_classificatie_matrix.xlsx rename to Corpus/Sparks/Informatie_classificatie_matrix.xlsx diff --git a/Corpus/πŸŽ‡ Sparks/Instruct an LLM on available tools.md b/Corpus/Sparks/Instruct an LLM on available tools.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Instruct an LLM on available tools.md rename to Corpus/Sparks/Instruct an LLM on available tools.md diff --git a/Corpus/πŸŽ‡ Sparks/Integrating Ollama Embeddings with AnythingLLM and LM Studio.md b/Corpus/Sparks/Integrating Ollama Embeddings with AnythingLLM and LM Studio.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Integrating Ollama Embeddings with AnythingLLM and LM Studio.md rename to Corpus/Sparks/Integrating Ollama Embeddings with AnythingLLM and LM Studio.md diff --git a/Corpus/πŸŽ‡ Sparks/Introduction for Organizational Structures.md b/Corpus/Sparks/Introduction for Organizational Structures.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Introduction for Organizational Structures.md rename to Corpus/Sparks/Introduction for Organizational Structures.md diff --git a/Corpus/πŸŽ‡ Sparks/JSON validation for Postgres.md b/Corpus/Sparks/JSON validation for Postgres.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/JSON validation for Postgres.md rename to Corpus/Sparks/JSON validation for Postgres.md diff --git a/Corpus/πŸŽ‡ Sparks/KPIs in Incident Response.md b/Corpus/Sparks/KPIs in Incident Response.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/KPIs in Incident Response.md rename to Corpus/Sparks/KPIs in Incident Response.md diff --git a/Corpus/πŸŽ‡ Sparks/Kerberoasting.md b/Corpus/Sparks/Kerberoasting.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Kerberoasting.md rename to Corpus/Sparks/Kerberoasting.md diff --git a/Corpus/πŸŽ‡ Sparks/Key Areas of Rasa Syntax.md b/Corpus/Sparks/Key Areas of Rasa Syntax.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Key Areas of Rasa Syntax.md rename to Corpus/Sparks/Key Areas of Rasa Syntax.md diff --git a/Corpus/πŸŽ‡ Sparks/Key Topics for a Classified Information Security Policy.md b/Corpus/Sparks/Key Topics for a Classified Information Security Policy.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Key Topics for a Classified Information Security Policy.md rename to Corpus/Sparks/Key Topics for a Classified Information Security Policy.md diff --git a/Corpus/πŸŽ‡ Sparks/Kilo Code development workflow.md b/Corpus/Sparks/Kilo Code development workflow.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Kilo Code development workflow.md rename to Corpus/Sparks/Kilo Code development workflow.md diff --git a/Corpus/πŸŽ‡ Sparks/Knowledge Graph Databases.md b/Corpus/Sparks/Knowledge Graph Databases.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Knowledge Graph Databases.md rename to Corpus/Sparks/Knowledge Graph Databases.md diff --git a/Corpus/πŸŽ‡ Sparks/LLM Prompt types.md b/Corpus/Sparks/LLM Prompt types.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/LLM Prompt types.md rename to Corpus/Sparks/LLM Prompt types.md diff --git a/Corpus/πŸŽ‡ Sparks/MCP Servers for Markdown.md b/Corpus/Sparks/MCP Servers for Markdown.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/MCP Servers for Markdown.md rename to Corpus/Sparks/MCP Servers for Markdown.md diff --git a/Corpus/πŸŽ‡ Sparks/MCP server for Obsidian Vault.md b/Corpus/Sparks/MCP server for Obsidian Vault.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/MCP server for Obsidian Vault.md rename to Corpus/Sparks/MCP server for Obsidian Vault.md diff --git a/Corpus/πŸŽ‡ Sparks/MCP server for creating abstracts.md b/Corpus/Sparks/MCP server for creating abstracts.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/MCP server for creating abstracts.md rename to Corpus/Sparks/MCP server for creating abstracts.md diff --git a/Corpus/πŸŽ‡ Sparks/Migration and information security according to ChatGPT.md b/Corpus/Sparks/Migration and information security according to ChatGPT.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Migration and information security according to ChatGPT.md rename to Corpus/Sparks/Migration and information security according to ChatGPT.md diff --git a/Corpus/πŸŽ‡ Sparks/Model Parameters.md b/Corpus/Sparks/Model Parameters.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Model Parameters.md rename to Corpus/Sparks/Model Parameters.md diff --git a/Corpus/πŸŽ‡ Sparks/Multi-factor authentication.md b/Corpus/Sparks/Multi-factor authentication.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Multi-factor authentication.md rename to Corpus/Sparks/Multi-factor authentication.md diff --git a/Corpus/πŸŽ‡ Sparks/New Mandatory.md b/Corpus/Sparks/New Mandatory.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/New Mandatory.md rename to Corpus/Sparks/New Mandatory.md diff --git a/Corpus/πŸŽ‡ Sparks/No local installs.md b/Corpus/Sparks/No local installs.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/No local installs.md rename to Corpus/Sparks/No local installs.md diff --git a/Corpus/πŸŽ‡ Sparks/OWASP Top 10 Web Application Security Risks.md b/Corpus/Sparks/OWASP Top 10 Web Application Security Risks.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/OWASP Top 10 Web Application Security Risks.md rename to Corpus/Sparks/OWASP Top 10 Web Application Security Risks.md diff --git a/Corpus/πŸŽ‡ Sparks/Open Group Risk Taxonomy Standard 3.01.pdf b/Corpus/Sparks/Open Group Risk Taxonomy Standard 3.01.pdf similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Open Group Risk Taxonomy Standard 3.01.pdf rename to Corpus/Sparks/Open Group Risk Taxonomy Standard 3.01.pdf diff --git a/Corpus/πŸŽ‡ Sparks/Organize your notes with Claude Code.md b/Corpus/Sparks/Organize your notes with Claude Code.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Organize your notes with Claude Code.md rename to Corpus/Sparks/Organize your notes with Claude Code.md diff --git a/Corpus/πŸŽ‡ Sparks/Organizing Cybersecurity.md b/Corpus/Sparks/Organizing Cybersecurity.md similarity index 80% rename from Corpus/πŸŽ‡ Sparks/Organizing Cybersecurity.md rename to Corpus/Sparks/Organizing Cybersecurity.md index 0dfe00b..095de4f 100644 --- a/Corpus/πŸŽ‡ Sparks/Organizing Cybersecurity.md +++ b/Corpus/Sparks/Organizing Cybersecurity.md @@ -5,7 +5,7 @@ e.g. CISO, DPO, CIO, Threat Management Team, Incident Response Team, Red/Blue/Pu Read: https://www.philvenables.com/post/building-balanced-security-teams-the-rule-of-thirds Related: -- [Checklist for auditing Cyber Operations](../πŸ“šοΈ%20Literature%20notes/Checklists%20Gerardus%20Blokdyk/Checklist%20for%20auditing%20Cyber%20Operations.md) +- [Checklist for auditing Cyber Operations](../Literature%20notes/Checklists%20Gerardus%20Blokdyk/Checklist%20for%20auditing%20Cyber%20Operations.md) Relevant ISO 27001 clauses/controls: - [ISO 27001 C 5.3 Organizational roles, responsibilities and authorities](../Standards/ISO27x/legacy/ISO%2027001%202013/ISO%2027001%20C%205.3%20Organizational%20roles,%20responsibilities%20and%20authorities.md) diff --git a/Corpus/πŸŽ‡ Sparks/PDF-to-RAG pipeline.md b/Corpus/Sparks/PDF-to-RAG pipeline.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/PDF-to-RAG pipeline.md rename to Corpus/Sparks/PDF-to-RAG pipeline.md diff --git a/Corpus/πŸŽ‡ Sparks/PEST analysis How To.md b/Corpus/Sparks/PEST analysis How To.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/PEST analysis How To.md rename to Corpus/Sparks/PEST analysis How To.md diff --git a/Corpus/πŸŽ‡ Sparks/Passwordless Authentication.md b/Corpus/Sparks/Passwordless Authentication.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Passwordless Authentication.md rename to Corpus/Sparks/Passwordless Authentication.md diff --git a/Corpus/πŸŽ‡ Sparks/Personae and Roles.md b/Corpus/Sparks/Personae and Roles.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Personae and Roles.md rename to Corpus/Sparks/Personae and Roles.md diff --git a/Corpus/πŸŽ‡ Sparks/Planning for Disruption.md b/Corpus/Sparks/Planning for Disruption.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Planning for Disruption.md rename to Corpus/Sparks/Planning for Disruption.md diff --git a/Corpus/πŸŽ‡ Sparks/Possible Colabs.md b/Corpus/Sparks/Possible Colabs.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Possible Colabs.md rename to Corpus/Sparks/Possible Colabs.md diff --git a/Corpus/πŸŽ‡ Sparks/Prioritisering Support.md b/Corpus/Sparks/Prioritisering Support.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Prioritisering Support.md rename to Corpus/Sparks/Prioritisering Support.md diff --git a/Corpus/πŸŽ‡ Sparks/Privacy protection in Databases.md b/Corpus/Sparks/Privacy protection in Databases.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Privacy protection in Databases.md rename to Corpus/Sparks/Privacy protection in Databases.md diff --git a/Corpus/πŸŽ‡ Sparks/Product Journeys.md b/Corpus/Sparks/Product Journeys.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Product Journeys.md rename to Corpus/Sparks/Product Journeys.md diff --git a/Corpus/πŸŽ‡ Sparks/RASCI Matrix.md b/Corpus/Sparks/RASCI Matrix.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/RASCI Matrix.md rename to Corpus/Sparks/RASCI Matrix.md diff --git a/Corpus/πŸŽ‡ Sparks/Ransomware Playbook.md b/Corpus/Sparks/Ransomware Playbook.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Ransomware Playbook.md rename to Corpus/Sparks/Ransomware Playbook.md diff --git a/Corpus/πŸŽ‡ Sparks/Ransomware.md b/Corpus/Sparks/Ransomware.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Ransomware.md rename to Corpus/Sparks/Ransomware.md diff --git a/Corpus/πŸŽ‡ Sparks/Reputation Risk Analysis.jpeg b/Corpus/Sparks/Reputation Risk Analysis.jpeg similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Reputation Risk Analysis.jpeg rename to Corpus/Sparks/Reputation Risk Analysis.jpeg diff --git a/Corpus/πŸŽ‡ Sparks/Risk Register Format.md b/Corpus/Sparks/Risk Register Format.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Risk Register Format.md rename to Corpus/Sparks/Risk Register Format.md diff --git a/Corpus/πŸŽ‡ Sparks/Risk analysis.md b/Corpus/Sparks/Risk analysis.md similarity index 74% rename from Corpus/πŸŽ‡ Sparks/Risk analysis.md rename to Corpus/Sparks/Risk analysis.md index 63081f6..0b441ab 100644 --- a/Corpus/πŸŽ‡ Sparks/Risk analysis.md +++ b/Corpus/Sparks/Risk analysis.md @@ -14,6 +14,6 @@ See also under [Threat](../πŸ“šοΈ%20Literature%20notes/Threat.md) Related: - [Assets, Vulnerabilities, Threats, Risks](Assets,%20Vulnerabilities,%20Threats,%20Risks.md) - [Risk identification](Risk%20identification.md) -- [Def_Sec_Handbook_Chapter_1](../πŸ“šοΈ%20Literature%20notes/Def_Sec_Handbook_Chapter_1.md) +- [Def_Sec_Handbook_Chapter_1](../Literature%20notes/Def_Sec_Handbook_Chapter_1.md) - [Evaluating and Quantifying Cyber Risks using FAIR](https://www.protiviti.com/US-en/technology-consulting/cybersecurity/fair) -- [Factor Analysis of Information Risk (FAIR)](../πŸ“šοΈ%20Literature%20notes/Factor%20Analysis%20of%20Information%20Risk%20(FAIR).md) \ No newline at end of file +- [Factor Analysis of Information Risk (FAIR)](../Literature%20notes/Factor%20Analysis%20of%20Information%20Risk%20(FAIR).md) \ No newline at end of file diff --git a/Corpus/πŸŽ‡ Sparks/Risk assessment and treatment at two levels.md b/Corpus/Sparks/Risk assessment and treatment at two levels.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Risk assessment and treatment at two levels.md rename to Corpus/Sparks/Risk assessment and treatment at two levels.md diff --git a/Corpus/πŸŽ‡ Sparks/Risk identification.md b/Corpus/Sparks/Risk identification.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Risk identification.md rename to Corpus/Sparks/Risk identification.md diff --git a/Corpus/πŸŽ‡ Sparks/Risk inventories.md b/Corpus/Sparks/Risk inventories.md similarity index 94% rename from Corpus/πŸŽ‡ Sparks/Risk inventories.md rename to Corpus/Sparks/Risk inventories.md index 3f9859b..7dfe9eb 100644 --- a/Corpus/πŸŽ‡ Sparks/Risk inventories.md +++ b/Corpus/Sparks/Risk inventories.md @@ -1,6 +1,6 @@ See also: - [Threat Catalogues](../πŸ“šοΈ%20Literature%20notes/Threat%20Catalogues.md) -- [Software vulnerability databases](../πŸ“šοΈ%20Literature%20notes/Software%20vulnerability%20databases.md) +- [Software vulnerability databases](../Literature%20notes/Software%20vulnerability%20databases.md) [NEN7510 Risicos](../Standards/ISO27x/OST/7510/NEN7510%20Risicos.md) diff --git a/Corpus/πŸŽ‡ Sparks/Risk management.md b/Corpus/Sparks/Risk management.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Risk management.md rename to Corpus/Sparks/Risk management.md diff --git a/Corpus/πŸŽ‡ Sparks/Risk ownership.md b/Corpus/Sparks/Risk ownership.md similarity index 93% rename from Corpus/πŸŽ‡ Sparks/Risk ownership.md rename to Corpus/Sparks/Risk ownership.md index 6e84082..439815f 100644 --- a/Corpus/πŸŽ‡ Sparks/Risk ownership.md +++ b/Corpus/Sparks/Risk ownership.md @@ -19,4 +19,4 @@ Risk ownership can be separated from asset ownership, when the asset owner has n The risk ownership can then be assigned to a third party, for example a compliance officer. -See also [Transfer in Risk Treatment](../πŸ“šοΈ%20Literature%20notes/Transfer%20in%20Risk%20Treatment.md). \ No newline at end of file +See also [Transfer in Risk Treatment](../Literature%20notes/Transfer%20in%20Risk%20Treatment.md). \ No newline at end of file diff --git a/Corpus/πŸŽ‡ Sparks/Risk prioritization.md b/Corpus/Sparks/Risk prioritization.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Risk prioritization.md rename to Corpus/Sparks/Risk prioritization.md diff --git a/Corpus/πŸŽ‡ Sparks/Risk tolerance.md b/Corpus/Sparks/Risk tolerance.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Risk tolerance.md rename to Corpus/Sparks/Risk tolerance.md diff --git a/Corpus/πŸŽ‡ Sparks/Risk treatment.md b/Corpus/Sparks/Risk treatment.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Risk treatment.md rename to Corpus/Sparks/Risk treatment.md diff --git a/Corpus/πŸŽ‡ Sparks/Risk-Based Authentication.md b/Corpus/Sparks/Risk-Based Authentication.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Risk-Based Authentication.md rename to Corpus/Sparks/Risk-Based Authentication.md diff --git a/Corpus/πŸŽ‡ Sparks/Risk_Assessment_Process.gif b/Corpus/Sparks/Risk_Assessment_Process.gif similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Risk_Assessment_Process.gif rename to Corpus/Sparks/Risk_Assessment_Process.gif diff --git a/Corpus/πŸŽ‡ Sparks/Risks of using personal email accounts in the workplace.md b/Corpus/Sparks/Risks of using personal email accounts in the workplace.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Risks of using personal email accounts in the workplace.md rename to Corpus/Sparks/Risks of using personal email accounts in the workplace.md diff --git a/Corpus/πŸŽ‡ Sparks/Risks vs Threats vs Vulnerabilities.md b/Corpus/Sparks/Risks vs Threats vs Vulnerabilities.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Risks vs Threats vs Vulnerabilities.md rename to Corpus/Sparks/Risks vs Threats vs Vulnerabilities.md diff --git a/Corpus/πŸŽ‡ Sparks/Risks.md b/Corpus/Sparks/Risks.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Risks.md rename to Corpus/Sparks/Risks.md diff --git a/Corpus/πŸŽ‡ Sparks/Roles and Responsibilities.md b/Corpus/Sparks/Roles and Responsibilities.md similarity index 54% rename from Corpus/πŸŽ‡ Sparks/Roles and Responsibilities.md rename to Corpus/Sparks/Roles and Responsibilities.md index 18f2587..b1c4370 100644 --- a/Corpus/πŸŽ‡ Sparks/Roles and Responsibilities.md +++ b/Corpus/Sparks/Roles and Responsibilities.md @@ -1,7 +1,7 @@ See also: -- [Roles in Information security management](../πŸ“šοΈ%20Literature%20notes/Roles%20in%20Information%20security%20management.md) -- [Roles in Identity and Access Management (IAM)](../πŸ“šοΈ%20Literature%20notes/Roles%20in%20Identity%20and%20Access%20Management%20(IAM).md) -- [Segregation of Duties](../πŸ“šοΈ%20Literature%20notes/Segregation%20of%20Duties.md) +- [Roles in Information security management](../Literature%20notes/Roles%20in%20Information%20security%20management.md) +- [Roles in Identity and Access Management (IAM)](../Literature%20notes/Roles%20in%20Identity%20and%20Access%20Management%20(IAM).md) +- [Segregation of Duties](../Literature%20notes/Segregation%20of%20Duties.md) - [RASCI Matrix](RASCI%20Matrix.md) - [a-5.2-Information-security-roles-and-responsibilities](../Standards/ISO27x/OST/27002/EN/a-5.2-Information-security-roles-and-responsibilities.md) - [a-5.3-Segregation-of-duties](../Standards/ISO27x/OST/27002/EN/a-5.3-Segregation-of-duties.md) diff --git a/Corpus/πŸŽ‡ Sparks/Rules to get better code.md b/Corpus/Sparks/Rules to get better code.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Rules to get better code.md rename to Corpus/Sparks/Rules to get better code.md diff --git a/Corpus/πŸŽ‡ Sparks/SP-RMM Risk Management Model.pdf b/Corpus/Sparks/SP-RMM Risk Management Model.pdf similarity index 100% rename from Corpus/πŸŽ‡ Sparks/SP-RMM Risk Management Model.pdf rename to Corpus/Sparks/SP-RMM Risk Management Model.pdf diff --git a/Corpus/πŸŽ‡ Sparks/SQL vs NoSQL.md b/Corpus/Sparks/SQL vs NoSQL.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/SQL vs NoSQL.md rename to Corpus/Sparks/SQL vs NoSQL.md diff --git a/Corpus/πŸŽ‡ Sparks/SURF Toolkit risicobeoordeling.md b/Corpus/Sparks/SURF Toolkit risicobeoordeling.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/SURF Toolkit risicobeoordeling.md rename to Corpus/Sparks/SURF Toolkit risicobeoordeling.md diff --git a/Corpus/πŸŽ‡ Sparks/SWOT Analyses confrontation matrix preview.png b/Corpus/Sparks/SWOT Analyses confrontation matrix preview.png similarity index 100% rename from Corpus/πŸŽ‡ Sparks/SWOT Analyses confrontation matrix preview.png rename to Corpus/Sparks/SWOT Analyses confrontation matrix preview.png diff --git a/Corpus/πŸŽ‡ Sparks/SWOT Analyses template.md b/Corpus/Sparks/SWOT Analyses template.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/SWOT Analyses template.md rename to Corpus/Sparks/SWOT Analyses template.md diff --git a/Corpus/πŸŽ‡ Sparks/SWOT confrontatiematrix.xlsx b/Corpus/Sparks/SWOT confrontatiematrix.xlsx similarity index 100% rename from Corpus/πŸŽ‡ Sparks/SWOT confrontatiematrix.xlsx rename to Corpus/Sparks/SWOT confrontatiematrix.xlsx diff --git a/Corpus/πŸŽ‡ Sparks/Safeguard information in Transit.md b/Corpus/Sparks/Safeguard information in Transit.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Safeguard information in Transit.md rename to Corpus/Sparks/Safeguard information in Transit.md diff --git a/Corpus/πŸŽ‡ Sparks/Samenhang tussen producten.md b/Corpus/Sparks/Samenhang tussen producten.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Samenhang tussen producten.md rename to Corpus/Sparks/Samenhang tussen producten.md diff --git a/Corpus/πŸŽ‡ Sparks/Scale up.md b/Corpus/Sparks/Scale up.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Scale up.md rename to Corpus/Sparks/Scale up.md diff --git a/Corpus/πŸŽ‡ Sparks/SecAware ISMS audit flags.docx b/Corpus/Sparks/SecAware ISMS audit flags.docx similarity index 100% rename from Corpus/πŸŽ‡ Sparks/SecAware ISMS audit flags.docx rename to Corpus/Sparks/SecAware ISMS audit flags.docx diff --git a/Corpus/πŸŽ‡ Sparks/Secure Vibecoding.md b/Corpus/Sparks/Secure Vibecoding.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Secure Vibecoding.md rename to Corpus/Sparks/Secure Vibecoding.md diff --git a/Corpus/πŸŽ‡ Sparks/Security Models.md b/Corpus/Sparks/Security Models.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Security Models.md rename to Corpus/Sparks/Security Models.md diff --git a/Corpus/πŸŽ‡ Sparks/Setup AnythingLLM with MCP servers.md b/Corpus/Sparks/Setup AnythingLLM with MCP servers.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Setup AnythingLLM with MCP servers.md rename to Corpus/Sparks/Setup AnythingLLM with MCP servers.md diff --git a/Corpus/πŸŽ‡ Sparks/Shadow IT Policy for Responsible Technology Adoption.md b/Corpus/Sparks/Shadow IT Policy for Responsible Technology Adoption.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Shadow IT Policy for Responsible Technology Adoption.md rename to Corpus/Sparks/Shadow IT Policy for Responsible Technology Adoption.md diff --git a/Corpus/πŸŽ‡ Sparks/Shadow IT risks.md b/Corpus/Sparks/Shadow IT risks.md similarity index 98% rename from Corpus/πŸŽ‡ Sparks/Shadow IT risks.md rename to Corpus/Sparks/Shadow IT risks.md index 62a29cc..2370ac7 100644 --- a/Corpus/πŸŽ‡ Sparks/Shadow IT risks.md +++ b/Corpus/Sparks/Shadow IT risks.md @@ -6,7 +6,7 @@ See also: - [Cloud Service Employee Guidelines](Cloud%20Service%20Employee%20Guidelines.md) - [Surveys on Shadow IT usage](Surveys%20on%20Shadow%20IT%20usage.md) -- [Dutch versions WiP](../../🏭%20Clients/Humankind/Beleid%20voor%20Gebruik%20van%20SaaS%20HK.md) +- [Dutch versions WiP](../../Clients/Humankind/Beleid%20voor%20Gebruik%20van%20SaaS%20HK.md) # Risks of Uncontrolled Cloud Software Usage diff --git a/Corpus/πŸŽ‡ Sparks/Software due diligence.md b/Corpus/Sparks/Software due diligence.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Software due diligence.md rename to Corpus/Sparks/Software due diligence.md diff --git a/Corpus/πŸŽ‡ Sparks/Source text.md b/Corpus/Sparks/Source text.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Source text.md rename to Corpus/Sparks/Source text.md diff --git a/Corpus/πŸŽ‡ Sparks/Stakeholder Analysis.md b/Corpus/Sparks/Stakeholder Analysis.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Stakeholder Analysis.md rename to Corpus/Sparks/Stakeholder Analysis.md diff --git a/Corpus/πŸŽ‡ Sparks/Sterke wachtwoorden in 2024.md b/Corpus/Sparks/Sterke wachtwoorden in 2024.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Sterke wachtwoorden in 2024.md rename to Corpus/Sparks/Sterke wachtwoorden in 2024.md diff --git a/Corpus/Sparks/Sticky labels.md b/Corpus/Sparks/Sticky labels.md new file mode 100644 index 0000000..ab7e7c2 --- /dev/null +++ b/Corpus/Sparks/Sticky labels.md @@ -0,0 +1,4 @@ +Data travels; how to make labels stick? + +Links to the [Privacy](../Drafts%20and%20Ideas/Privacy.md) issue of [Data Provenance](Data%20Provenance.md) . + diff --git a/Corpus/πŸŽ‡ Sparks/SupaBase Edge Functions.md b/Corpus/Sparks/SupaBase Edge Functions.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/SupaBase Edge Functions.md rename to Corpus/Sparks/SupaBase Edge Functions.md diff --git a/Corpus/πŸŽ‡ Sparks/SupaBase edge functions portability.md b/Corpus/Sparks/SupaBase edge functions portability.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/SupaBase edge functions portability.md rename to Corpus/Sparks/SupaBase edge functions portability.md diff --git a/Corpus/πŸŽ‡ Sparks/SurveyJS.md b/Corpus/Sparks/SurveyJS.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/SurveyJS.md rename to Corpus/Sparks/SurveyJS.md diff --git a/Corpus/πŸŽ‡ Sparks/Surveys on Shadow IT usage.md b/Corpus/Sparks/Surveys on Shadow IT usage.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Surveys on Shadow IT usage.md rename to Corpus/Sparks/Surveys on Shadow IT usage.md diff --git a/Corpus/πŸŽ‡ Sparks/The Psychology Behind SaaS Pricing.md b/Corpus/Sparks/The Psychology Behind SaaS Pricing.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/The Psychology Behind SaaS Pricing.md rename to Corpus/Sparks/The Psychology Behind SaaS Pricing.md diff --git a/Corpus/πŸŽ‡ Sparks/The Ultimate Vibe Coding Guide.md b/Corpus/Sparks/The Ultimate Vibe Coding Guide.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/The Ultimate Vibe Coding Guide.md rename to Corpus/Sparks/The Ultimate Vibe Coding Guide.md diff --git a/Corpus/πŸŽ‡ Sparks/Threat Intelligence.md b/Corpus/Sparks/Threat Intelligence.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Threat Intelligence.md rename to Corpus/Sparks/Threat Intelligence.md diff --git a/Corpus/πŸŽ‡ Sparks/Threat intelligence sources.md b/Corpus/Sparks/Threat intelligence sources.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Threat intelligence sources.md rename to Corpus/Sparks/Threat intelligence sources.md diff --git a/Corpus/πŸŽ‡ Sparks/To Do Query.md b/Corpus/Sparks/To Do Query.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/To Do Query.md rename to Corpus/Sparks/To Do Query.md diff --git a/Corpus/πŸŽ‡ Sparks/Tokens.md b/Corpus/Sparks/Tokens.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Tokens.md rename to Corpus/Sparks/Tokens.md diff --git a/Corpus/πŸŽ‡ Sparks/Trias Politica.md b/Corpus/Sparks/Trias Politica.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Trias Politica.md rename to Corpus/Sparks/Trias Politica.md diff --git a/Corpus/πŸŽ‡ Sparks/Triggers for Reviews of Policies.md b/Corpus/Sparks/Triggers for Reviews of Policies.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Triggers for Reviews of Policies.md rename to Corpus/Sparks/Triggers for Reviews of Policies.md diff --git a/Corpus/πŸŽ‡ Sparks/TypeDB structure for ISO27DIY.md b/Corpus/Sparks/TypeDB structure for ISO27DIY.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/TypeDB structure for ISO27DIY.md rename to Corpus/Sparks/TypeDB structure for ISO27DIY.md diff --git a/Corpus/πŸŽ‡ Sparks/Types of Controls.md b/Corpus/Sparks/Types of Controls.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Types of Controls.md rename to Corpus/Sparks/Types of Controls.md diff --git a/Corpus/πŸŽ‡ Sparks/Unified Architecture Method.md b/Corpus/Sparks/Unified Architecture Method.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Unified Architecture Method.md rename to Corpus/Sparks/Unified Architecture Method.md diff --git a/Corpus/πŸŽ‡ Sparks/Using Obsidian 2.md b/Corpus/Sparks/Using Obsidian 2.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Using Obsidian 2.md rename to Corpus/Sparks/Using Obsidian 2.md diff --git a/Corpus/πŸŽ‡ Sparks/Using Obsidian.md b/Corpus/Sparks/Using Obsidian.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Using Obsidian.md rename to Corpus/Sparks/Using Obsidian.md diff --git a/Corpus/πŸŽ‡ Sparks/Vendor security MoC.md b/Corpus/Sparks/Vendor security MoC.md similarity index 66% rename from Corpus/πŸŽ‡ Sparks/Vendor security MoC.md rename to Corpus/Sparks/Vendor security MoC.md index 20992b0..dcdea76 100644 --- a/Corpus/πŸŽ‡ Sparks/Vendor security MoC.md +++ b/Corpus/Sparks/Vendor security MoC.md @@ -19,19 +19,19 @@ See also: - [Examples of vendor selection questionnaires](Examples%20of%20vendor%20selection%20questionnaires.md) -- [Draft Vendor and Product checklist](../πŸ“šοΈ%20Literature%20notes/Draft%20Vendor%20and%20Product%20checklist.md) -- [Veiligheidseisen aan Leveranciers Junis](../../🏭%20Clients/Junis/Veiligheidseisen%20aan%20Leveranciers%20Junis.md) +- [Draft Vendor and Product checklist](../Literature%20notes/Draft%20Vendor%20and%20Product%20checklist.md) +- [Veiligheidseisen aan Leveranciers Junis](../../Clients/Junis/Veiligheidseisen%20aan%20Leveranciers%20Junis.md) - [Vulnerability Disclosure Policy](Vulnerability%20Disclosure%20Policy.md) - [Software due diligence](Software%20due%20diligence.md) -- [Checklist for security product vendors assessment](../πŸ“šοΈ%20Literature%20notes/Checklists%20Gerardus%20Blokdyk/Checklist%20for%20security%20product%20vendors%20assessment.md) -- [Checklist for auditing Vendor Management](../πŸ“šοΈ%20Literature%20notes/Checklists%20Gerardus%20Blokdyk/Checklist%20for%20auditing%20Vendor%20Management.md) -- [Treating vendors as a risk](../πŸ“šοΈ%20Literature%20notes/Treating%20vendors%20as%20a%20risk.md) +- [Checklist for security product vendors assessment](../Literature%20notes/Checklists%20Gerardus%20Blokdyk/Checklist%20for%20security%20product%20vendors%20assessment.md) +- [Checklist for auditing Vendor Management](../Literature%20notes/Checklists%20Gerardus%20Blokdyk/Checklist%20for%20auditing%20Vendor%20Management.md) +- [Treating vendors as a risk](../Literature%20notes/Treating%20vendors%20as%20a%20risk.md) Examples: -- [Dropbox Supplier Security Requirements](../πŸ“šοΈ%20Literature%20notes/Dropbox%20Supplier%20Security%20Requirements.md) -- [Veiligheidseisen aan Leveranciers Junis](../../🏭%20Clients/Junis/Veiligheidseisen%20aan%20Leveranciers%20Junis.md) -- [Ubeoo ATS vendor selection Humankind](../../🏭%20Clients/Humankind/Ubeoo%20ATS%20vendor%20selection%20Humankind.md) -- [Selectie en implementatie van Technologie bij Humankind](../../🏭%20Clients/Humankind/Selectie%20en%20implementatie%20van%20Technologie%20bij%20Humankind.md) +- [Dropbox Supplier Security Requirements](../Literature%20notes/Dropbox%20Supplier%20Security%20Requirements.md) +- [Veiligheidseisen aan Leveranciers Junis](../../Clients/Junis/Veiligheidseisen%20aan%20Leveranciers%20Junis.md) +- [Ubeoo ATS vendor selection Humankind](../../Clients/Humankind/Ubeoo%20ATS%20vendor%20selection%20Humankind.md) +- [Selectie en implementatie van Technologie bij Humankind](../../Clients/Humankind/Selectie%20en%20implementatie%20van%20Technologie%20bij%20Humankind.md) diff --git a/Corpus/πŸŽ‡ Sparks/Vibe Coding MoC.md b/Corpus/Sparks/Vibe Coding MoC.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Vibe Coding MoC.md rename to Corpus/Sparks/Vibe Coding MoC.md diff --git a/Corpus/πŸŽ‡ Sparks/Vibe Coding Tips.md b/Corpus/Sparks/Vibe Coding Tips.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Vibe Coding Tips.md rename to Corpus/Sparks/Vibe Coding Tips.md diff --git a/Corpus/πŸŽ‡ Sparks/Voorbeeld van een release script.md b/Corpus/Sparks/Voorbeeld van een release script.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Voorbeeld van een release script.md rename to Corpus/Sparks/Voorbeeld van een release script.md diff --git a/Corpus/πŸŽ‡ Sparks/Voorbeelden van incidenten door menselijk handelen.docx b/Corpus/Sparks/Voorbeelden van incidenten door menselijk handelen.docx similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Voorbeelden van incidenten door menselijk handelen.docx rename to Corpus/Sparks/Voorbeelden van incidenten door menselijk handelen.docx diff --git a/Corpus/πŸŽ‡ Sparks/Vulnerability Disclosure Policy.md b/Corpus/Sparks/Vulnerability Disclosure Policy.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Vulnerability Disclosure Policy.md rename to Corpus/Sparks/Vulnerability Disclosure Policy.md diff --git a/Corpus/πŸŽ‡ Sparks/Wat bestuurders willen.md b/Corpus/Sparks/Wat bestuurders willen.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Wat bestuurders willen.md rename to Corpus/Sparks/Wat bestuurders willen.md diff --git a/Corpus/πŸŽ‡ Sparks/What is an embedding model.md b/Corpus/Sparks/What is an embedding model.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/What is an embedding model.md rename to Corpus/Sparks/What is an embedding model.md diff --git a/Corpus/πŸŽ‡ Sparks/When to use JSON data types.md b/Corpus/Sparks/When to use JSON data types.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/When to use JSON data types.md rename to Corpus/Sparks/When to use JSON data types.md diff --git a/Corpus/πŸŽ‡ Sparks/Working with Branches in GIT.md b/Corpus/Sparks/Working with Branches in GIT.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Working with Branches in GIT.md rename to Corpus/Sparks/Working with Branches in GIT.md diff --git a/Corpus/πŸŽ‡ Sparks/Zero Trust Course ISC2.md b/Corpus/Sparks/Zero Trust Course ISC2.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Zero Trust Course ISC2.md rename to Corpus/Sparks/Zero Trust Course ISC2.md diff --git a/Corpus/πŸŽ‡ Sparks/Zero Trust and ISO 27001.md b/Corpus/Sparks/Zero Trust and ISO 27001.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/Zero Trust and ISO 27001.md rename to Corpus/Sparks/Zero Trust and ISO 27001.md diff --git a/Corpus/πŸŽ‡ Sparks/functional components of a RAG system.md b/Corpus/Sparks/functional components of a RAG system.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/functional components of a RAG system.md rename to Corpus/Sparks/functional components of a RAG system.md diff --git a/Corpus/πŸŽ‡ Sparks/impactgebieden.md b/Corpus/Sparks/impactgebieden.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/impactgebieden.md rename to Corpus/Sparks/impactgebieden.md diff --git a/Corpus/πŸŽ‡ Sparks/iso27001_changes_table.jpeg b/Corpus/Sparks/iso27001_changes_table.jpeg similarity index 100% rename from Corpus/πŸŽ‡ Sparks/iso27001_changes_table.jpeg rename to Corpus/Sparks/iso27001_changes_table.jpeg diff --git a/Corpus/πŸŽ‡ Sparks/kaartjes dreiging kwetsbaar impact.docx b/Corpus/Sparks/kaartjes dreiging kwetsbaar impact.docx similarity index 100% rename from Corpus/πŸŽ‡ Sparks/kaartjes dreiging kwetsbaar impact.docx rename to Corpus/Sparks/kaartjes dreiging kwetsbaar impact.docx diff --git a/Corpus/πŸŽ‡ Sparks/postgreSQL and JSON.md b/Corpus/Sparks/postgreSQL and JSON.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/postgreSQL and JSON.md rename to Corpus/Sparks/postgreSQL and JSON.md diff --git a/Corpus/πŸŽ‡ Sparks/risicobeoordeling workshop slides.pptx b/Corpus/Sparks/risicobeoordeling workshop slides.pptx similarity index 100% rename from Corpus/πŸŽ‡ Sparks/risicobeoordeling workshop slides.pptx rename to Corpus/Sparks/risicobeoordeling workshop slides.pptx diff --git a/Corpus/πŸŽ‡ Sparks/slot_config_erd.mermaid b/Corpus/Sparks/slot_config_erd.mermaid similarity index 100% rename from Corpus/πŸŽ‡ Sparks/slot_config_erd.mermaid rename to Corpus/Sparks/slot_config_erd.mermaid diff --git a/Corpus/πŸŽ‡ Sparks/slot_config_schema.sql b/Corpus/Sparks/slot_config_schema.sql similarity index 100% rename from Corpus/πŸŽ‡ Sparks/slot_config_schema.sql rename to Corpus/Sparks/slot_config_schema.sql diff --git a/Corpus/πŸŽ‡ Sparks/slot_manager_implementation.py b/Corpus/Sparks/slot_manager_implementation.py similarity index 100% rename from Corpus/πŸŽ‡ Sparks/slot_manager_implementation.py rename to Corpus/Sparks/slot_manager_implementation.py diff --git a/Corpus/πŸŽ‡ Sparks/template risicobeoordeling.xlsx b/Corpus/Sparks/template risicobeoordeling.xlsx similarity index 100% rename from Corpus/πŸŽ‡ Sparks/template risicobeoordeling.xlsx rename to Corpus/Sparks/template risicobeoordeling.xlsx diff --git a/Corpus/πŸŽ‡ Sparks/use Warp for coding.md b/Corpus/Sparks/use Warp for coding.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/use Warp for coding.md rename to Corpus/Sparks/use Warp for coding.md diff --git a/Corpus/πŸŽ‡ Sparks/weweb_security_checklist.md b/Corpus/Sparks/weweb_security_checklist.md similarity index 100% rename from Corpus/πŸŽ‡ Sparks/weweb_security_checklist.md rename to Corpus/Sparks/weweb_security_checklist.md diff --git a/Corpus/Standards/AVG/AVG lijst artikelen.md b/Corpus/Standards/AVG/AVG lijst artikelen.md index 83eb761..52caba3 100644 --- a/Corpus/Standards/AVG/AVG lijst artikelen.md +++ b/Corpus/Standards/AVG/AVG lijst artikelen.md @@ -74,7 +74,7 @@ Zie ook [AVG lijst artikelnummers](AVG%20lijst%20artikelnummers.md) - [Artikel 37 Aanwijzing van de functionaris voor gegevensbescherming](AVG-OST/AVG2018-Art-37.md) - [Artikel 38 Positie van de functionaris voor gegevensbescherming](AVG-OST/AVG2018-Art-38.md) -- [Artikel 39 Taken van de functionaris voor gegevensbescherming](../../πŸŽ‡%20Sparks/Artikel%2039%20Taken%20van%20de%20functionaris%20voor%20gegevensbescherming.md) +- [Artikel 39 Taken van de functionaris voor gegevensbescherming](../../Sparks/Artikel%2039%20Taken%20van%20de%20functionaris%20voor%20gegevensbescherming.md) ## Afdeling 5 - Gedragscodes en certificering diff --git a/Corpus/Standards/AVG/AVG lijst artikelnummers.md b/Corpus/Standards/AVG/AVG lijst artikelnummers.md index ed5e8b5..8121d00 100644 --- a/Corpus/Standards/AVG/AVG lijst artikelnummers.md +++ b/Corpus/Standards/AVG/AVG lijst artikelnummers.md @@ -38,7 +38,7 @@ Zie ook [AVG lijst artikelen](AVG%20lijst%20artikelen.md) [Art. 36](AVG-OST/AVG2018-Art-36.md) [Art. 37](AVG-OST/AVG2018-Art-37.md) [Art. 38](AVG-OST/AVG2018-Art-38.md) -[Art. 39](../../πŸŽ‡%20Sparks/Artikel%2039%20Taken%20van%20de%20functionaris%20voor%20gegevensbescherming.md) +[Art. 39](../../Sparks/Artikel%2039%20Taken%20van%20de%20functionaris%20voor%20gegevensbescherming.md) [Art. 40](AVG-OST/AVG2018-Art-40.md) [Art. 41](AVG-OST/AVG2018-Art-41.md) [Art. 42](AVG-OST/AVG2018-Art-42.md) diff --git a/Corpus/Standards/AVG/Verplichte documenten AVG.md b/Corpus/Standards/AVG/Verplichte documenten AVG.md index 905c74d..c991a5b 100644 --- a/Corpus/Standards/AVG/Verplichte documenten AVG.md +++ b/Corpus/Standards/AVG/Verplichte documenten AVG.md @@ -15,7 +15,7 @@ Bron: [Advisera](https://advisera.com/eugdpracademy/knowledgebase/list-of-mandat | Register Datalekken | [33](AVG-OST/AVG2018-Art-33.md) | | Meldingsformulier AP – op website AP | [33](AVG-OST/AVG2018-Art-33.md) | | Meldingsformulier betrokkenen | [34](AVG-OST/AVG2018-Art-34.md) | -| Functiebeschrijving Functionaris Gegevensbescherming | [37](AVG-OST/AVG2018-Art-37.md), [38](AVG-OST/AVG2018-Art-38.md), [39](../../πŸŽ‡%20Sparks/Artikel%2039%20Taken%20van%20de%20functionaris%20voor%20gegevensbescherming.md) | +| Functiebeschrijving Functionaris Gegevensbescherming | [37](AVG-OST/AVG2018-Art-37.md), [38](AVG-OST/AVG2018-Art-38.md), [39](../../Sparks/Artikel%2039%20Taken%20van%20de%20functionaris%20voor%20gegevensbescherming.md) | | Verwerkingsregister | [30](AVG-OST/AVG2018-Art-30.md) | | Standard Contractual Clauses for the Transfer of Personal Data to Controllers ([^1]) | [46](AVG-OST/AVG2018-Art-46.md) | | Standard Contractual Clauses for the Transfer of Personal Data to Processors ([^1]) | [46](AVG-OST/AVG2018-Art-46.md) | @@ -44,4 +44,4 @@ Bron: [Advisera](https://advisera.com/eugdpracademy/knowledgebase/list-of-mandat ## Voorbeelden -[Example introduction for an Internal Privacy Policy](../../πŸ“šοΈ%20Literature%20notes/Example%20introduction%20for%20an%20Internal%20Privacy%20Policy.md) +[Example introduction for an Internal Privacy Policy](../../Literature%20notes/Example%20introduction%20for%20an%20Internal%20Privacy%20Policy.md) diff --git a/Corpus/Standards/BC 5701/BC5701_Training_Tab_07_O.md b/Corpus/Standards/BC 5701/BC5701_Training_Tab_07_O.md index 24a0c7b..dbda3f6 100644 --- a/Corpus/Standards/BC 5701/BC5701_Training_Tab_07_O.md +++ b/Corpus/Standards/BC 5701/BC5701_Training_Tab_07_O.md @@ -9,7 +9,7 @@ Version: "2022" Sheets in de cursusmap behandelen: - samenstelling leidende coalitie (p.2) - impact op de organisatie (p.2) -- veranderen / [Theory of planned behavior](../../πŸ“šοΈ%20Literature%20notes/Theory%20of%20planned%20behavior.md) [^1] (p.3) +- veranderen / [Theory of planned behavior](../../Literature%20notes/Theory%20of%20planned%20behavior.md) [^1] (p.3) - borging in de organisatie (p.4) [^1]: Icek Ajzen diff --git a/Corpus/Standards/CISSP/CISSP_OSG8_D1_C1_1.10.md b/Corpus/Standards/CISSP/CISSP_OSG8_D1_C1_1.10.md index 7659455..b3d3b12 100644 --- a/Corpus/Standards/CISSP/CISSP_OSG8_D1_C1_1.10.md +++ b/Corpus/Standards/CISSP/CISSP_OSG8_D1_C1_1.10.md @@ -31,7 +31,7 @@ Trike is also a risk based threat modeling methodology. Visual, Agile, and Simple Threat (VAST) modeling is based on Agile principles. The goal is to integrate threat and risk management into an Agile programming environment. ### OCTAVE -see Defensive Security Handbook [Chapter 1: Risk Management](../../πŸ“šοΈ%20Literature%20notes/Def_Sec_Handbook_Chapter_1.md#Chapter%201%20Risk%20Management) +see Defensive Security Handbook [Chapter 1: Risk Management](../../Literature%20notes/Def_Sec_Handbook_Chapter_1.md#Chapter%201%20Risk%20Management) ## Diagramming Potential Attacks See pp 35-36 diff --git a/Corpus/Standards/ISO27x/Authentication.md b/Corpus/Standards/ISO27x/Authentication.md index 2b1e0ac..44e1e13 100644 --- a/Corpus/Standards/ISO27x/Authentication.md +++ b/Corpus/Standards/ISO27x/Authentication.md @@ -5,7 +5,7 @@ Authentication is the proof of identity that is achieved through providing crede See also: - [a-8.5-Secure-authentication](OST/27002/EN/a-8.5-Secure-authentication.md) -- [Authentication Methods Used for Network Security](../../πŸ“šοΈ%20Literature%20notes/Authentication%20Methods%20Used%20for%20Network%20Security.md) +- [Authentication Methods Used for Network Security](../../Literature%20notes/Authentication%20Methods%20Used%20for%20Network%20Security.md) - [Identity and Access Management (IAM)](../../πŸ’‘Drafts%20and%20Ideas/Identity%20and%20Access%20Management%20(IAM).md) - [Authorization](Authorization.md) - [Identification](../../πŸ’‘Drafts%20and%20Ideas/Identification.md) diff --git a/Corpus/Standards/ISO27x/Authorization.md b/Corpus/Standards/ISO27x/Authorization.md index 362c41b..7d0400a 100644 --- a/Corpus/Standards/ISO27x/Authorization.md +++ b/Corpus/Standards/ISO27x/Authorization.md @@ -2,11 +2,11 @@ Authorization is the mechanism that determines the access level(s) of the subjects to the objects. See also: -- [Authorization vs Access Control](../../πŸŽ‡%20Sparks/Authorization%20vs%20Access%20Control.md) -- [Access Control Models](../../πŸŽ‡%20Sparks/Access%20Control%20Models.md) +- [Authorization vs Access Control](../../Sparks/Authorization%20vs%20Access%20Control.md) +- [Access Control Models](../../Sparks/Access%20Control%20Models.md) - [Authentication](Authentication.md) - [Identification](../../πŸ’‘Drafts%20and%20Ideas/Identification.md) -- [CASSM Consumer Authentication Strength Maturity Model](../../πŸ“šοΈ%20Literature%20notes/CASSM%20Consumer%20Authentication%20Strength%20Maturity%20Model.md) +- [CASSM Consumer Authentication Strength Maturity Model](../../Literature%20notes/CASSM%20Consumer%20Authentication%20Strength%20Maturity%20Model.md) - [Identity and Access Management (IAM)](../../πŸ’‘Drafts%20and%20Ideas/Identity%20and%20Access%20Management%20(IAM).md) - [a-5.15-Access-control](OST/27002/EN/a-5.15-Access-control.md) ??? diff --git a/Corpus/Standards/ISO27x/Governance model for Policies and Controls.md b/Corpus/Standards/ISO27x/Governance model for Policies and Controls.md index 7c6edb0..411f016 100644 --- a/Corpus/Standards/ISO27x/Governance model for Policies and Controls.md +++ b/Corpus/Standards/ISO27x/Governance model for Policies and Controls.md @@ -2,7 +2,7 @@ Based on ISO 27001 and ISO 27002, a governance model for your ISMS should be structured around **Top Management's accountability** while delegating the **tactical execution** to specific information security roles. -*See [Basic ISMS governance model](../../πŸ’‘Drafts%20and%20Ideas/ISMS/Basic%20ISMS%20governance%20model.md) for a compacted version* +*See [Basic ISMS governance model](../../Drafts%20and%20Ideas/ISMS/Basic%20ISMS%20governance%20model.md) for a compacted version* ## Related to the Policies Lifecycle Here is a suggested governance model mapping the lifecycle of security policies (commissioning, drafting, approving, etc.) to the specific roles mandated by the standards. diff --git a/Corpus/Standards/ISO27x/ISO 27k standards overview.md b/Corpus/Standards/ISO27x/ISO 27k standards overview.md index 5b333b0..cfe2395 100644 --- a/Corpus/Standards/ISO27x/ISO 27k standards overview.md +++ b/Corpus/Standards/ISO27x/ISO 27k standards overview.md @@ -26,14 +26,14 @@ NL brontekst: See also: - [Plain English ISOΒ IEC 27002 2005 from Praxiom](https://www.praxiom.com/iso-17799-objectives.htm) -- [Changes in ISO 27001:2022 (table)](../../πŸŽ‡%20Sparks/Detailed%20comparison%20between%202017%20and%202022.md) +- [Changes in ISO 27001:2022 (table)](../../Sparks/Detailed%20comparison%20between%202017%20and%202022.md) - [[ISO 27002 2022 What's New]] - [ISO_27001_2023_NL_Aanpassingen](OST/ISO_27001_2023_NL_Aanpassingen.md) - [Changes in ISO 27001_2022_Advisera](../../../../iso27DIY-gis/reference/Changes%20in%20ISO%2027001_2022_Advisera.md) - [IBB op hoofdlijnen](OST/IBB%20op%20hoofdlijnen.md) - [ISO 27001 2023 Processen en Artefacten](OST/ISO%2027001%202023%20Processen%20en%20Artefacten.md) - [Advised Documents for ISO 27001](../../../../iso27DIY-gis/reference/Advised%20Documents%20for%20ISO%2027001.md) -- [Types of Controls](../../πŸŽ‡%20Sparks/Types%20of%20Controls.md) +- [Types of Controls](../../Sparks/Types%20of%20Controls.md) Depreciated: [ISO_27001_2013_EN_Index](legacy/ISO%2027001%202013/ISO_27001_2013_EN_Index.md) diff --git a/Corpus/Standards/ISO27x/Implementation Products/BIA Workshop.md b/Corpus/Standards/ISO27x/Implementation Products/BIA Workshop.md index 22a6c6a..3d4d5d5 100644 --- a/Corpus/Standards/ISO27x/Implementation Products/BIA Workshop.md +++ b/Corpus/Standards/ISO27x/Implementation Products/BIA Workshop.md @@ -1,8 +1,8 @@ # Workshop Business Impact Analyse Voorbeelden: -- [BIA Workshop DAK](../../../../🏭%20Clients/DAK/BIA%20Workshop%20DAK.md) -- [BIA en DRP Sessies HK](../../../../🏭%20Clients/Humankind/BIA%20en%20DRP%20Sessies%20HK.md) +- [BIA Workshop DAK](../../../../Clients/DAK/BIA%20Workshop%20DAK.md) +- [BIA en DRP Sessies HK](../../../../Clients/Humankind/BIA%20en%20DRP%20Sessies%20HK.md) [Verbeterlijst](Verbeterlijst%20Producten.md#BIA%20Workshop) @@ -29,7 +29,7 @@ Voorbereiding: 3. Impact: - hoe lang kan mag een systeem of bepaalde informatie niet beschikbaar zijn, voordat we ernstige schade oplopen? - - Wat is 'ernstige schade'? -> - [TLP impact matrix](../../../πŸ“šοΈ%20Literature%20notes/Traffic%20Light%20Protocol%20TLP.md) + - Wat is 'ernstige schade'? -> - [TLP impact matrix](../../../Literature%20notes/Traffic%20Light%20Protocol%20TLP.md) - MTPD – Maximum tolerable period of disruption (business process): uur / dag / week / maand - MTD – Maximum Tolerable Downtime (assets) – uit de lucht zijn diff --git a/Corpus/Standards/ISO27x/Implementation Products/DRP Workshop.md b/Corpus/Standards/ISO27x/Implementation Products/DRP Workshop.md index 7b97f1a..0eb7f93 100644 --- a/Corpus/Standards/ISO27x/Implementation Products/DRP Workshop.md +++ b/Corpus/Standards/ISO27x/Implementation Products/DRP Workshop.md @@ -1,8 +1,8 @@ # Workshop Disaster Recovery Planning Voorbeelden: -- [IRP Workshop DAK](../../../../🏭%20Clients/DAK/IRP%20Workshop%20DAK.md) -- [BIA en DRP Sessies HK](../../../../🏭%20Clients/Humankind/BIA%20en%20DRP%20Sessies%20HK.md) +- [IRP Workshop DAK](../../../../Clients/DAK/IRP%20Workshop%20DAK.md) +- [BIA en DRP Sessies HK](../../../../Clients/Humankind/BIA%20en%20DRP%20Sessies%20HK.md) Literatuur: - [Disaster Recovery Planning](../../../πŸŽ‡%20Sparks/Disaster%20Recovery%20Planning.md) diff --git a/Corpus/Standards/ISO27x/Implementation Products/Dataclassificatie volgens TLP.md b/Corpus/Standards/ISO27x/Implementation Products/Dataclassificatie volgens TLP.md index 2fb98f2..af62ee9 100644 --- a/Corpus/Standards/ISO27x/Implementation Products/Dataclassificatie volgens TLP.md +++ b/Corpus/Standards/ISO27x/Implementation Products/Dataclassificatie volgens TLP.md @@ -1,11 +1,11 @@ # Product: dataclassificatie volgens TLP -Template: [](../../../πŸ“Ž%20Attachments/TLP_Impact_matrix_NL.xlsx) -Toegepast voor Humankind: [Dataclassificatie Humankind](../../../../🏭%20Clients/Humankind/Dataclassificatie%20Humankind.md) +Template: [](../../../Attachments/TLP_Impact_matrix_NL.xlsx) +Toegepast voor Humankind: [Dataclassificatie Humankind](../../../../Clients/Humankind/Dataclassificatie%20Humankind.md) ## Flow -1. Vaststellen risicobereidheid ([impactgebieden](../../../πŸŽ‡%20Sparks/impactgebieden.md) en [TLP-niveaus](../../../πŸ“šοΈ%20Literature%20notes/Traffic%20Light%20Protocol%20TLP.md)) +1. Vaststellen risicobereidheid ([impactgebieden](../../../Sparks/impactgebieden.md) en [TLP-niveaus](../../../Literature%20notes/Traffic%20Light%20Protocol%20TLP.md)) - Beschikbaarheid evt. te kwantificering door omzetverlies per dag (financiΓ«n) 2. Identificeren en Classificeren van informatie-assets - Op de as Beschikbaarheid: te bepalen door de Operatie, m.b.v. de BIA @@ -14,5 +14,5 @@ Toegepast voor Humankind: [Dataclassificatie Humankind](../../../../🏭%20Clien - verzamelen wat al 'in place' is met IT Aanvullen met: -- [Aanpak voor beleidsmatig toegangsbeheer DAK](../../../../🏭%20Clients/DAK/Inventarisatie%20beheer%20SaaS%20applicaties%20DAK.md#Voorgestelde%20aanpak%20voor%20beleidsmatig%20toegangsbeheer) -- [Dataclassificatie Humankind](../../../../🏭%20Clients/Humankind/Dataclassificatie%20Humankind.md) +- [Aanpak voor beleidsmatig toegangsbeheer DAK](../../../../Clients/DAK/Inventarisatie%20beheer%20SaaS%20applicaties%20DAK.md#Voorgestelde%20aanpak%20voor%20beleidsmatig%20toegangsbeheer) +- [Dataclassificatie Humankind](../../../../Clients/Humankind/Dataclassificatie%20Humankind.md) diff --git a/Corpus/Standards/ISO27x/Implementation Products/Hulplijsten/Hulplijst systemen voor BIA workshop.md b/Corpus/Standards/ISO27x/Implementation Products/Hulplijsten/Hulplijst systemen voor BIA workshop.md index 81bbbc5..04389cd 100644 --- a/Corpus/Standards/ISO27x/Implementation Products/Hulplijsten/Hulplijst systemen voor BIA workshop.md +++ b/Corpus/Standards/ISO27x/Implementation Products/Hulplijsten/Hulplijst systemen voor BIA workshop.md @@ -9,4 +9,4 @@ - klimaat - supplies -[Hulplijst systemen voor DAK kindercentra](../../../../../🏭%20Clients/DAK/Hulplijst%20systemen%20voor%20DAK%20kindercentra.md) \ No newline at end of file +[Hulplijst systemen voor DAK kindercentra](../../../../../Clients/DAK/Hulplijst%20systemen%20voor%20DAK%20kindercentra.md) \ No newline at end of file diff --git a/Corpus/Standards/ISO27x/Implementation Products/Uitvraag Pentest.md b/Corpus/Standards/ISO27x/Implementation Products/Uitvraag Pentest.md index 6520f02..63f0d91 100644 --- a/Corpus/Standards/ISO27x/Implementation Products/Uitvraag Pentest.md +++ b/Corpus/Standards/ISO27x/Implementation Products/Uitvraag Pentest.md @@ -1,6 +1,6 @@ Voorbeelden: -- [Pentest DAK](../../../../🏭%20Clients/DAK/Pentest%20DAK.md) -- [Pentest Humankind](../../../../🏭%20Clients/Humankind/Pentest%20Humankind.md) +- [Pentest DAK](../../../../Clients/DAK/Pentest%20DAK.md) +- [Pentest Humankind](../../../../Clients/Humankind/Pentest%20Humankind.md) [Verbeterlijst](Verbeterlijst%20Producten.md#Uitvraag%20Pentest) diff --git a/Corpus/Standards/ISO27x/Implementation Products/Verbeterlijst Producten.md b/Corpus/Standards/ISO27x/Implementation Products/Verbeterlijst Producten.md index 67d8dae..e334d29 100644 --- a/Corpus/Standards/ISO27x/Implementation Products/Verbeterlijst Producten.md +++ b/Corpus/Standards/ISO27x/Implementation Products/Verbeterlijst Producten.md @@ -1,5 +1,5 @@ # Verbeterlijst producten -## [Selectie en implementatie van Technologie bij Humankind](../../../../🏭%20Clients/Humankind/Selectie%20en%20implementatie%20van%20Technologie%20bij%20Humankind.md) +## [Selectie en implementatie van Technologie bij Humankind](../../../../Clients/Humankind/Selectie%20en%20implementatie%20van%20Technologie%20bij%20Humankind.md) Toevoegen bij Projectfase: - bij de installatie van software en systemen moet altijd direct de standaard authenticatie-informatie worden gewijzigd – dit geldt ook voor bijv. wachtwoorden die door verkopers/consultants verstrekt worden; @@ -13,20 +13,20 @@ Toevoegen bij Projectfase: - Criteria OWASP voor SaaS applicaties kunnen een referentie zijn om de systemen van SaaS leveranciers te testen ## Risico inventarisatie -[Risico-inventarisatie DAK](../../../../🏭%20Clients/DAK/Risico-inventarisatie%20DAK.md), [Rapportage Risico inventarisatie Humankind](../../../../🏭%20Clients/Humankind/Rapportage%20Risico%20inventarisatie%20Humankind.md) +[Risico-inventarisatie DAK](../../../../Clients/DAK/Risico-inventarisatie%20DAK.md), [Rapportage Risico inventarisatie Humankind](../../../../Clients/Humankind/Rapportage%20Risico%20inventarisatie%20Humankind.md) - Maak een datagraph van de risico's en aanbevelingen, die zijn grotendeels gelijk voor vergelijkbare organisaties - Doe dit evt ook voor de TrustBound smart hub ## [BIA Workshop](BIA%20Workshop.md) -Uit de [BIA Workshop DAK](../../../../🏭%20Clients/DAK/BIA%20Workshop%20DAK.md): +Uit de [BIA Workshop DAK](../../../../Clients/DAK/BIA%20Workshop%20DAK.md): - Leon vond de nadruk teveel liggen op de continuΓ―teit van kantoorprocessen, en teveel op financiΓ«le impact. 'Reputatie is vele malen belangrijker voor een kinderopvang organisatie dan dat de facturen er per einde maand uitgaan.' Eigen conclusie: beter eerst de belangrijkste impactgebieden bepalen, bijv. met de [Dataclassificatie volgens TLP](Dataclassificatie%20volgens%20TLP.md). ## Data classificatie met de [Dataclassificatie volgens TLP](Dataclassificatie%20volgens%20TLP.md). Proces -1. Bepalen belangrijkste [impactgebieden](../../../πŸŽ‡%20Sparks/impactgebieden.md) +1. Bepalen belangrijkste [impactgebieden](../../../Sparks/impactgebieden.md) 2. Kwalificeren / kwantificeren niveaus 3. Bepalen bijbehorende maatregelen 'at rest, in transit, in use' 4. DefiniΓ«ren informatietypen binnen de niveaus diff --git a/Corpus/Standards/ISO27x/MoC Roles and responsibilities in ISO 27001.md b/Corpus/Standards/ISO27x/MoC Roles and responsibilities in ISO 27001.md index 5dbed46..6b051e7 100644 --- a/Corpus/Standards/ISO27x/MoC Roles and responsibilities in ISO 27001.md +++ b/Corpus/Standards/ISO27x/MoC Roles and responsibilities in ISO 27001.md @@ -7,13 +7,13 @@ Recent: - [ISO 27001 Leadership Responsibilities](ISO%2027001%20Leadership%20Responsibilities.md) - [ISO 27001 Top Management responsibilities](ISO%2027001%20Top%20Management%20responsibilities.md) - [Governance model for Policies and Controls](Governance%20model%20for%20Policies%20and%20Controls.md) -- [Basic ISMS governance model](../../πŸ’‘Drafts%20and%20Ideas/ISMS/Basic%20ISMS%20governance%20model.md) +- [Basic ISMS governance model](../../Drafts%20and%20Ideas/ISMS/Basic%20ISMS%20governance%20model.md) - [m400-more-governance](../../../../iso27DIY-gis/guide/m400/m400-more-governance.md) Older: - [Roles and Responsibilities](../../πŸŽ‡%20Sparks/Roles%20and%20Responsibilities.md) - [Risk ownership](../../πŸŽ‡%20Sparks/Risk%20ownership.md) -- [Ideas on Risk Ownership](../../πŸŽ‡%20Sparks/Ideas%20on%20Risk%20Ownership.md) +- [Ideas on Risk Ownership](../../Sparks/Ideas%20on%20Risk%20Ownership.md) - [Asset ownership](../../πŸŽ‡%20Sparks/Asset%20ownership.md) - [Procuratieregeling](../../Various/Procuratieregeling.md) -- [Control ownership](../../πŸŽ‡%20Sparks/Control%20ownership.md) +- [Control ownership](../../Sparks/Control%20ownership.md) diff --git a/Corpus/Standards/ISO27x/PECB-Lead-Auditor-Training/PECB 27001 LA S05 E03a - Risk treatment.md b/Corpus/Standards/ISO27x/PECB-Lead-Auditor-Training/PECB 27001 LA S05 E03a - Risk treatment.md index 604a537..fb5d8c3 100644 --- a/Corpus/Standards/ISO27x/PECB-Lead-Auditor-Training/PECB 27001 LA S05 E03a - Risk treatment.md +++ b/Corpus/Standards/ISO27x/PECB-Lead-Auditor-Training/PECB 27001 LA S05 E03a - Risk treatment.md @@ -50,4 +50,4 @@ The controls in Annex A are often described in just one or two sentences. You mu ## Footnotes [^1]: There's also a [Clause 8.3](../../../MoCs/ISO_27001_2022_8.3_MoC%20Information%20security%20risk%20treatment.md) Information security risk treatment in ISO 27001. It's very short: The organization shall implement the information security risk treatment plan, and it shall retain documented information on the treatments' results. -[^2]: See also [About the Statement of Applicability](../../../πŸ’‘Drafts%20and%20Ideas/ISMS/About%20the%20Statement%20of%20Applicability.md). \ No newline at end of file +[^2]: See also [About the Statement of Applicability](../../../Drafts%20and%20Ideas/ISMS/About%20the%20Statement%20of%20Applicability.md). \ No newline at end of file diff --git a/Corpus/Standards/ISO27x/legacy/About ISO27DIY Policy Cards.md b/Corpus/Standards/ISO27x/legacy/About ISO27DIY Policy Cards.md index f5f7041..9ee8483 100644 --- a/Corpus/Standards/ISO27x/legacy/About ISO27DIY Policy Cards.md +++ b/Corpus/Standards/ISO27x/legacy/About ISO27DIY Policy Cards.md @@ -27,6 +27,6 @@ Related ISO clauses and controls: Related ideas: - [ISO27DIY Recipe for Policy Cards](iso27DIY%20mk%20I/ISO27DIY%20Recipe%20for%20Policy%20Cards.md) - [BC5701_Training_Tab_03_MS](../../BC%205701/BC5701_Training_Tab_03_MS.md#Beleid) -- [Modules, Screens and Content](../../../πŸ’‘Drafts%20and%20Ideas/Modules,%20Screens%20and%20Content.md) +- [Modules, Screens and Content](../../../Drafts%20and%20Ideas/Modules,%20Screens%20and%20Content.md) - [🧰 Resource portal](iso27DIY%20mk%20I/🧰%20Resource%20portal.md) -- [Topical InfoSec Kanban’s](../../../πŸ“šοΈ%20Literature%20notes/Topical%20InfoSec%20Kanban’s.md) +- [Topical InfoSec Kanban’s](../../../Literature%20notes/Topical%20InfoSec%20Kanban’s.md) diff --git a/Corpus/Standards/ISO27x/legacy/ISO 27001 2013/ISO 27001 A 8.2.2 Labelling of information.md b/Corpus/Standards/ISO27x/legacy/ISO 27001 2013/ISO 27001 A 8.2.2 Labelling of information.md index dd74512..187a470 100644 --- a/Corpus/Standards/ISO27x/legacy/ISO 27001 2013/ISO 27001 A 8.2.2 Labelling of information.md +++ b/Corpus/Standards/ISO27x/legacy/ISO 27001 2013/ISO 27001 A 8.2.2 Labelling of information.md @@ -3,4 +3,4 @@ An appropriate set of procedures for information labelling shall be developed and implemented in accordance with the information classification scheme adopted by the organization. Related: -- [Labeling of information in the digital domain](../../../../πŸ’‘Drafts%20and%20Ideas/Labeling%20of%20information%20in%20the%20digital%20domain.md) \ No newline at end of file +- [Labeling of information in the digital domain](../../../../Drafts%20and%20Ideas/Labeling%20of%20information%20in%20the%20digital%20domain.md) \ No newline at end of file diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO 27001 benefits.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO 27001 benefits.md index 77bd6c1..bc159ef 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO 27001 benefits.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO 27001 benefits.md @@ -2,14 +2,14 @@ - Easier sales - Accelerates your customer’s Purchase Decision Process ("Sell with Confidence. Worldwide.") - - Certification for this standard is increasingly becoming a knock-out criterium for [Examples of vendor selection questionnaires](../../../../πŸŽ‡%20Sparks/Examples%20of%20vendor%20selection%20questionnaires.md). + - Certification for this standard is increasingly becoming a knock-out criterium for [Examples of vendor selection questionnaires](../../../../Sparks/Examples%20of%20vendor%20selection%20questionnaires.md). - Raises your infosec maturity level - Raise your [Maturity Models](../../../../πŸ“šοΈ%20Literature%20notes/Maturity%20Models.md) from incident driven to improvement focussed - Continual improvement of security - Increased resilience - be prepared for events that threaten your business continuity - Accountability / responsibility - - [Corporate social responsibility](../../../../πŸ“šοΈ%20Literature%20notes/Corporate%20social%20responsibility.md) + - [Corporate social responsibility](../../../../Literature%20notes/Corporate%20social%20responsibility.md) - VoorkΓ³men maatschappelijke ontwrichting (voorbeeld: een massale cyberaanval legt de Rotterdamse havens stil) - Encourage transparency. "We believe that transparency, such as having a permissive vulnerability disclosure policy (VDP) that encourages security research, is a key characteristic of a good, mature security program". - https://www.maastrichtuniversity.nl/data-protection-corporate-social-responsibility \ No newline at end of file diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO 27001 structure diagram.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO 27001 structure diagram.md index 70ff269..e414688 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO 27001 structure diagram.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO 27001 structure diagram.md @@ -1,6 +1,6 @@ The following picture is actually about a more general 'IT Service Managment system' but can be adapted to clarify the structure of [ISO 27001 A.13.2 Information transfer](../ISO%2027001%202013/ISO%2027001%20A.13.2%20Information%20transfer.md). -![](../../../../πŸ’‘Drafts%20and%20Ideas/Service%20management%20system%20block%20diagram.png) +![](../../../../Drafts%20and%20Ideas/Service%20management%20system%20block%20diagram.png) Source: https://theartofservice.com/wp-content/uploads/2021/07/Picture-1.png diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Additional resources.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Additional resources.md index dde0174..8bfe3ff 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Additional resources.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Additional resources.md @@ -19,5 +19,5 @@ There's a [Things project](things:///show?id=WrsCKrKd86aYAUxCoo7KhC) for creatin ### Related notes - [ISO27DIY membership tiers](ISO27DIY%20membership%20tiers.md) - For identifying and creating further additional resources, see the [Working back from the Annex A dashboard](Working%20back%20from%20the%20Annex%20A%20dashboard.md) note. -- [Blurbs](../../../../πŸŽ‡%20Sparks/Blurbs.md) +- [Blurbs](../../../../Sparks/Blurbs.md) diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Business drivers.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Business drivers.md index 40fd9d2..ed76ab3 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Business drivers.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Business drivers.md @@ -1,3 +1,3 @@ -- [Perverse prikkels in de normindustrie](../../../../πŸ’‘Drafts%20and%20Ideas/Perverse%20prikkels%20in%20de%20normindustrie.md) -- [GRC software is geschreven voor domeindeskundigen](../../../../πŸ’‘Drafts%20and%20Ideas/GRC%20software%20is%20geschreven%20voor%20domeindeskundigen.md) -- [Problems solved](../../../../πŸ’‘Drafts%20and%20Ideas/Problems%20solved.md) +- [Perverse prikkels in de normindustrie](../../../../Drafts%20and%20Ideas/Perverse%20prikkels%20in%20de%20normindustrie.md) +- [GRC software is geschreven voor domeindeskundigen](../../../../Drafts%20and%20Ideas/GRC%20software%20is%20geschreven%20voor%20domeindeskundigen.md) +- [Problems solved](../../../../Drafts%20and%20Ideas/Problems%20solved.md) diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Business model.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Business model.md index 8152ea5..efa064b 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Business model.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Business model.md @@ -1,15 +1,15 @@ Child notes: -- [Blurbs](../../../../πŸŽ‡%20Sparks/Blurbs.md) -- [Toegevoegde waarde van ISO27DIY](../../../../πŸ’‘Drafts%20and%20Ideas/Toegevoegde%20waarde%20van%20ISO27DIY.md) +- [Blurbs](../../../../Sparks/Blurbs.md) +- [Toegevoegde waarde van ISO27DIY](../../../../Drafts%20and%20Ideas/Toegevoegde%20waarde%20van%20ISO27DIY.md) - [Friendly targets](../../../../../../πŸ’‘Permanent%20ideas/Friendly%20targets.md) -- [Possible Colabs](../../../../πŸŽ‡%20Sparks/Possible%20Colabs.md) -- [List of possible partners](../../../../πŸ’‘Drafts%20and%20Ideas/List%20of%20possible%20partners.md) +- [Possible Colabs](../../../../Sparks/Possible%20Colabs.md) +- [List of possible partners](../../../../Drafts%20and%20Ideas/List%20of%20possible%20partners.md) - [ISO27DIY Business drivers](ISO27DIY%20Business%20drivers.md) - [AuditGlue Business model](../AuditGlue%20Business%20model.md) - [[### Related notes - [ISO27DIY membership tiers](ISO27DIY%20membership%20tiers.md) - For identifying and creating further additional resources, see the [Working back from the Annex A dashboard](Working%20back%20from%20the%20Annex%20A%20dashboard.md) note. -- [Blurbs](../../../../πŸŽ‡%20Sparks/Blurbs.md) +- [Blurbs](../../../../Sparks/Blurbs.md) diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Kanban board.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Kanban board.md index 1d14d7e..e0b8222 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Kanban board.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Kanban board.md @@ -6,4 +6,4 @@ Examples / templates may be offered as a (freebee) resource - see [🧰 Resource Related: - [Working back from the Annex A dashboard](Working%20back%20from%20the%20Annex%20A%20dashboard.md) -- See [Topical InfoSec Kanban’s](../../../../πŸ“šοΈ%20Literature%20notes/Topical%20InfoSec%20Kanban’s.md) for inspiration. \ No newline at end of file +- See [Topical InfoSec Kanban’s](../../../../Literature%20notes/Topical%20InfoSec%20Kanban’s.md) for inspiration. \ No newline at end of file diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Video A.2 Context and Scope - Stakeholders.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Video A.2 Context and Scope - Stakeholders.md index e454847..cde6fce 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Video A.2 Context and Scope - Stakeholders.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Video A.2 Context and Scope - Stakeholders.md @@ -12,7 +12,7 @@ In this video you'll learn how to create a stakeholder analysis, identifying the > Examine "external stakeholders’ relationships, perceptions, values, needs and expectations" -- [ ] See also [Stakeholder Analysis](../../../../πŸŽ‡%20Sparks/Stakeholder%20Analysis.md) +- [ ] See also [Stakeholder Analysis](../../../../Sparks/Stakeholder%20Analysis.md) - [ ] And [this](https://www.pmi.org/learning/library/stakeholder-analysis-pivotal-practice-projects-8905) from the Project Management Institute diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Workshop 0 - Introduction to the ISO27DIY workshop series.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Workshop 0 - Introduction to the ISO27DIY workshop series.md index 3d408ae..2fb9305 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Workshop 0 - Introduction to the ISO27DIY workshop series.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Workshop 0 - Introduction to the ISO27DIY workshop series.md @@ -24,7 +24,7 @@ Facilities and materials needed for this workshop: - Z ## Video -![](../../../../πŸ“Ž%20Attachments/YouTube-icon-small.png) +![](../../../../Attachments/YouTube-icon-small.png) Length of workshop video: .. minutes Estimated workshop duration: .. minutes diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Workshop 1 - Preparing the project.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Workshop 1 - Preparing the project.md index def51bf..2f2c1bb 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Workshop 1 - Preparing the project.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Workshop 1 - Preparing the project.md @@ -25,7 +25,7 @@ Facilities and materials needed for this workshop: ## Workshop video -![](../../../../πŸ“Ž%20Attachments/YouTube-icon-small.png) +![](../../../../Attachments/YouTube-icon-small.png) Length of workshop video: .. minutes Estimated workshop duration: .. minutes diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Workshop X - Certification.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Workshop X - Certification.md index 30e3052..bbfaf78 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Workshop X - Certification.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/ISO27DIY Workshop X - Certification.md @@ -10,4 +10,4 @@ At the end of of this session, ask people to share their results because it help Related -[External audits](../../../../πŸŽ‡%20Sparks/External%20audits.md) \ No newline at end of file +[External audits](../../../../Sparks/External%20audits.md) \ No newline at end of file diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/Working back from the Annex A dashboard.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/Working back from the Annex A dashboard.md index dda3723..e80b3e6 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/Working back from the Annex A dashboard.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/Working back from the Annex A dashboard.md @@ -1,4 +1,4 @@ -Start with the [](../../../../πŸ“Ž%20Attachments/ISO%2027001%20Implementatie%20dashboard%20Annex%20A.xlsx) as a framework. +Start with the [](../../../../Attachments/ISO%2027001%20Implementatie%20dashboard%20Annex%20A.xlsx) as a framework. Every cell gets one or more corresponding [ISO27DIY Kanban board](ISO27DIY%20Kanban%20board.md) items. So they are all linked to at least one of the ISO 27001 controls or ISO 27001 clauses. Note that in this approach all [About ISO27DIY Policy Cards](../About%20ISO27DIY%20Policy%20Cards.md), [Advised Documents for ISO 27001](../../../../../../iso27DIY-gis/reference/Advised%20Documents%20for%20ISO%2027001.md), and identified risks and controls will appear on the Kanban board, directly or indirectly. diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO 27001 Implementation Plan.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO 27001 Implementation Plan.md index 0028d51..1277376 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO 27001 Implementation Plan.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO 27001 Implementation Plan.md @@ -2,7 +2,7 @@ Skeleton project plan contents: - [ISO 27001 benefits](../ISO%2027001%20benefits.md) - - [ISO27DIY benefits](../../../../../πŸŽ‡%20Sparks/ISO27DIY%20benefits.md) + - [ISO27DIY benefits](../../../../../Sparks/ISO27DIY%20benefits.md) ## Benefits diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO 27001 Stakeholder Presentation.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO 27001 Stakeholder Presentation.md index c80a42a..412bf6a 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO 27001 Stakeholder Presentation.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO 27001 Stakeholder Presentation.md @@ -6,5 +6,5 @@ ## Related: - [ISO 27001 benefits](../ISO%2027001%20benefits.md) -- [ISO27DIY benefits](../../../../../πŸŽ‡%20Sparks/ISO27DIY%20benefits.md) +- [ISO27DIY benefits](../../../../../Sparks/ISO27DIY%20benefits.md) diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO27DIY Target Operational Model for the ISMS.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO27DIY Target Operational Model for the ISMS.md index ab287de..eff8116 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO27DIY Target Operational Model for the ISMS.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO27DIY Target Operational Model for the ISMS.md @@ -1,6 +1,6 @@ TOM: "What does running an ISO compliant ISMS look like, organization wise?" -See: [Target Operational Model](../../../../../πŸ“šοΈ%20Literature%20notes/Target%20Operational%20Model.md) +See: [Target Operational Model](../../../../../Literature%20notes/Target%20Operational%20Model.md) - What's expected of senior management on board: - Show leadership and commitment @@ -9,6 +9,6 @@ See: [Target Operational Model](../../../../../πŸ“šοΈ%20Literature%20notes/Targ - Define roles and responsibilities - Provide resources and support - Consider requesting certification - - [Organizing Cybersecurity](../../../../../πŸŽ‡%20Sparks/Organizing%20Cybersecurity.md) + - [Organizing Cybersecurity](../../../../../Sparks/Organizing%20Cybersecurity.md) -- [Target Operational Model](../../../../../πŸ“šοΈ%20Literature%20notes/Target%20Operational%20Model.md) \ No newline at end of file +- [Target Operational Model](../../../../../Literature%20notes/Target%20Operational%20Model.md) \ No newline at end of file diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO27DIY implementation dashboard.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO27DIY implementation dashboard.md index 12508d9..1b5fda0 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO27DIY implementation dashboard.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/🏺 ISO27DIY Artefacts/ISO27DIY implementation dashboard.md @@ -1,6 +1,6 @@ The purpose of the Implementation Dashboard is to get an overview of progress and gaps and make auditing easier. See this: -- [example Excel sheet (NL version)](../../../../../πŸ“Ž%20Attachments/ISO%2027001%20Implementatie%20dashboard%20Annex%20A.xlsx) +- [example Excel sheet (NL version)](../../../../../Attachments/ISO%2027001%20Implementatie%20dashboard%20Annex%20A.xlsx) - [example Excel sheet (EN version)](ISO%2027001-2013%20Implementation%20Dashboard.xlsx) diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ’Ύ AuditGlue software.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ’Ύ AuditGlue software.md index a6574cb..0326852 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ’Ύ AuditGlue software.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ’Ύ AuditGlue software.md @@ -4,9 +4,9 @@ Pivoting away from 'guided implementation management' to: Related: -- [Three user modes for AuditGlue](../../../../πŸ’‘Drafts%20and%20Ideas/Three%20user%20modes%20for%20AuditGlue.md) +- [Three user modes for AuditGlue](../../../../Drafts%20and%20Ideas/Three%20user%20modes%20for%20AuditGlue.md) - [Distributed usage of AuditGlue](../../../../../../πŸ’‘Permanent%20ideas/Distributed%20usage%20of%20AuditGlue.md) -- [Modules, Screens and Content](../../../../πŸ’‘Drafts%20and%20Ideas/Modules,%20Screens%20and%20Content.md) +- [Modules, Screens and Content](../../../../Drafts%20and%20Ideas/Modules,%20Screens%20and%20Content.md) - [AuditGlue ERD](../AuditGlue%20ERD.md) - [AuditGlue Business model](../AuditGlue%20Business%20model.md) diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO 27x Control PE template.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO 27x Control PE template.md index 7fa6f9d..5974b87 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO 27x Control PE template.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO 27x Control PE template.md @@ -1,4 +1,4 @@ -[Source text](../../../../../πŸŽ‡%20Sparks/Source%20text.md) +[Source text](../../../../../Sparks/Source%20text.md) ## Control ID + Title diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO27DIY Policy Card template.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO27DIY Policy Card template.md index a5ccbab..8bcbb45 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO27DIY Policy Card template.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO27DIY Policy Card template.md @@ -20,7 +20,7 @@ Related to: The Document Owner is responsible for development and implementation of the policy. - [ ] Check Standard on documentation and ownership -- [ ] Check 'responsible' vs. 'accountable' / [Responsibility assignment matrices](../../../../../πŸ“šοΈ%20Literature%20notes/Responsibility%20assignment%20matrices.md) +- [ ] Check 'responsible' vs. 'accountable' / [Responsibility assignment matrices](../../../../../Literature%20notes/Responsibility%20assignment%20matrices.md) ## Policy subject diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO27DIY Short Video description template.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO27DIY Short Video description template.md index 89b8c79..2e6ed0f 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO27DIY Short Video description template.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO27DIY Short Video description template.md @@ -31,7 +31,7 @@ Needed for this workshop: > Existing documentation ## Workshop video -![](../../../../../πŸ“Ž%20Attachments/YouTube-icon-small.png) +![](../../../../../Attachments/YouTube-icon-small.png) Length of workshop video: .. minutes Estimated workshop duration: .. minutes diff --git a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO27DIY Workshop Overview template.md b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO27DIY Workshop Overview template.md index e8327dd..3bd5f9b 100644 --- a/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO27DIY Workshop Overview template.md +++ b/Corpus/Standards/ISO27x/legacy/iso27DIY mk I/πŸ“’ Templates/ISO27DIY Workshop Overview template.md @@ -27,7 +27,7 @@ Needed for this workshop: > Existing documentation ## Workshop video -![](../../../../../πŸ“Ž%20Attachments/YouTube-icon-small.png) +![](../../../../../Attachments/YouTube-icon-small.png) Length of workshop video: .. minutes Estimated workshop duration: .. minutes diff --git a/Corpus/Standards/NIS 2/NIS 2 Directive and ISO 27001-2022.md b/Corpus/Standards/NIS 2/NIS 2 Directive and ISO 27001-2022.md index 219f98e..46af511 100644 --- a/Corpus/Standards/NIS 2/NIS 2 Directive and ISO 27001-2022.md +++ b/Corpus/Standards/NIS 2/NIS 2 Directive and ISO 27001-2022.md @@ -2,4 +2,4 @@ Relevant articles of the NIS 2 are linked to clauses and controls of the ISO 27001:2022 -![](../../πŸ“Ž%20Attachments/NIS_2_and_ISO_27001_2022.pdf) \ No newline at end of file +![](../../Attachments/NIS_2_and_ISO_27001_2022.pdf) \ No newline at end of file diff --git a/Corpus/Standards/NIS 2/NIS 2 Index.md b/Corpus/Standards/NIS 2/NIS 2 Index.md index e3a0bc4..ff24c9e 100644 --- a/Corpus/Standards/NIS 2/NIS 2 Index.md +++ b/Corpus/Standards/NIS 2/NIS 2 Index.md @@ -2,13 +2,13 @@ [NIS 2 in Vlaanderen](NIS%202%20in%20Vlaanderen.md) [NIS 2 Cyberfundamentals Framework](NIS%202%20Cyberfundamentals%20Framework.md) (Vlaanderen) -[NIS 2 voor Humankind](../../../🏭%20Clients/Humankind/NIS%202%20voor%20Humankind.md) +[NIS 2 voor Humankind](../../../Clients/Humankind/NIS%202%20voor%20Humankind.md) [NIS2 Explained](FortMesa%20NIS2%20Explained.md) for FortMesa webinar June 2025: "The State of EU Cyber Compliance: NIS2 Explained" [NIS 2 maatregelen en ISO 27002/BIO](https://www.digitaleoverheid.nl/overzicht-van-alle-onderwerpen/nis2-richtlijn/mapping-nis2-maatregelen/) – Digitale overheid -[PDF](../../πŸ“Ž%20Attachments/NIS_2_and_ISO_27001_2022.pdf): NIS 2 Directive and ISO 27001 – Andrey Prozorov +[PDF](../../Attachments/NIS_2_and_ISO_27001_2022.pdf): NIS 2 Directive and ISO 27001 – Andrey Prozorov [PDF](NIS2_EN.pdf): NIS 2 Original Text EN [PDF](NIS2_NL.pdf): NIS 2 Brontekst diff --git a/Corpus/Standards/NIST/NIST articles list.md b/Corpus/Standards/NIST/NIST articles list.md index d94c40d..fe6568b 100644 --- a/Corpus/Standards/NIST/NIST articles list.md +++ b/Corpus/Standards/NIST/NIST articles list.md @@ -9,7 +9,7 @@ [NIST CSF 2.0 Incident Response](NIST%20CSF%202.0%20Incident%20Response.md) [](NIST%20CSF%202.0%20incident%20life%20cycle.png) [NIST Cybersecurity Framework's five Functions](NIST%20Cybersecurity%20Framework's%20five%20Functions.md) - is this 2.0? -[Mapping NIST Controls to ISO Standards](../../πŸ“šοΈ%20Literature%20notes/Mapping%20NIST%20Controls%20to%20ISO%20Standards.md) - is this 2.0? +[Mapping NIST Controls to ISO Standards](../../Literature%20notes/Mapping%20NIST%20Controls%20to%20ISO%20Standards.md) - is this 2.0? [CSF Tools for NIST CSF and PF](../other/CSF%20Tools%20for%20NIST%20CSF%20and%20PF.md) - is this 2.0? diff --git a/Corpus/Standards/SANS/SANS Incident Response Plan.md b/Corpus/Standards/SANS/SANS Incident Response Plan.md index dd89ad5..64a2a18 100644 --- a/Corpus/Standards/SANS/SANS Incident Response Plan.md +++ b/Corpus/Standards/SANS/SANS Incident Response Plan.md @@ -3,7 +3,7 @@ Retrieved: November 28, 2022 Related: - [ISO 27002 5.24 Information security incident management planning and preparation](../ISO27x/OST/27002/EN/a-5.24-Information-security-incident-management-planning-and-preparation.md) -- [Ransomware Playbook](../../πŸŽ‡%20Sparks/Ransomware%20Playbook.md) +- [Ransomware Playbook](../../Sparks/Ransomware%20Playbook.md) Six steps: diff --git a/Corpus/Standards/other/Privacy frameworks list.md b/Corpus/Standards/other/Privacy frameworks list.md index 80e65f3..8807a57 100644 --- a/Corpus/Standards/other/Privacy frameworks list.md +++ b/Corpus/Standards/other/Privacy frameworks list.md @@ -2,9 +2,9 @@ [BC_5701_Hoofstukken_Normtekst](../BC%205701/BC_5701_Hoofstukken_Normtekst.md) [NIST Privacy Framework (PF)](../NIST/NIST%20Privacy%20Framework%20(PF).md) -[Privacy in ISO 27k](../../πŸ“šοΈ%20Literature%20notes/Privacy%20in%20ISO%2027k.md) +[Privacy in ISO 27k](../../Literature%20notes/Privacy%20in%20ISO%2027k.md) Related: -- [Privacy protection in Databases](../../πŸŽ‡%20Sparks/Privacy%20protection%20in%20Databases.md) +- [Privacy protection in Databases](../../Sparks/Privacy%20protection%20in%20Databases.md) - [ISO 27001 A.18.1.4 Privacy and protection of personally identifiable information](../ISO27x/legacy/ISO%2027001%202013/ISO%2027001%20A.18.1.4%20Privacy%20and%20protection%20of%20personally%20identifiable%20information.md) diff --git a/Corpus/Standards/other/SCF Risk Categories for Establishing a Risk Catalog.md b/Corpus/Standards/other/SCF Risk Categories for Establishing a Risk Catalog.md index 5317627..d04236e 100644 --- a/Corpus/Standards/other/SCF Risk Categories for Establishing a Risk Catalog.md +++ b/Corpus/Standards/other/SCF Risk Categories for Establishing a Risk Catalog.md @@ -10,7 +10,7 @@ More detail in Security & Privacy Risk Management Model (SP-RMM) Overview Related: -- [Secure Controls Framework](../../πŸ“šοΈ%20Literature%20notes/Secure%20Controls%20Framework.md) +- [Secure Controls Framework](../../Literature%20notes/Secure%20Controls%20Framework.md) - [Risk analysis](../../πŸŽ‡%20Sparks/Risk%20analysis.md) - [Risk inventories](../../πŸŽ‡%20Sparks/Risk%20inventories.md) diff --git a/Corpus/Standards/other/SCF Threat Categories for Establishing a Threat Catalog.md b/Corpus/Standards/other/SCF Threat Categories for Establishing a Threat Catalog.md index 0c46566..ef35fbd 100644 --- a/Corpus/Standards/other/SCF Threat Categories for Establishing a Threat Catalog.md +++ b/Corpus/Standards/other/SCF Threat Categories for Establishing a Threat Catalog.md @@ -6,7 +6,7 @@ https://securecontrolsframework.com/risk-management-model/ Related: -- [Secure Controls Framework](../../πŸ“šοΈ%20Literature%20notes/Secure%20Controls%20Framework.md) +- [Secure Controls Framework](../../Literature%20notes/Secure%20Controls%20Framework.md) - [Threat Intelligence](../../πŸŽ‡%20Sparks/Threat%20Intelligence.md) - [Assets, Vulnerabilities, Threats, Risks](../../πŸŽ‡%20Sparks/Assets,%20Vulnerabilities,%20Threats,%20Risks.md) diff --git a/Corpus/Standards/other/SP-CMM Security & Privacy maturity.md b/Corpus/Standards/other/SP-CMM Security & Privacy maturity.md index d5502ea..d0a6411 100644 --- a/Corpus/Standards/other/SP-CMM Security & Privacy maturity.md +++ b/Corpus/Standards/other/SP-CMM Security & Privacy maturity.md @@ -1,6 +1,6 @@ ## Security & Privacy: SP-CMM -The Security & Privacy Capability Maturity Model (SP-CMM) from the [Secure Controls Framework](../../πŸ“šοΈ%20Literature%20notes/Secure%20Controls%20Framework.md) takes the organizations size into consideration by having different requirements for small, medium and large organizations. +The Security & Privacy Capability Maturity Model (SP-CMM) from the [Secure Controls Framework](../../Literature%20notes/Secure%20Controls%20Framework.md) takes the organizations size into consideration by having different requirements for small, medium and large organizations. Detailed on page 21 of Secure Controls Framework Overview & Instructions, version 2022.1. ([download link](https://scf.securecontrolsframework.com/SCF_Overview_Recommended_Practices.pdf)) diff --git a/Corpus/Standards/other/πŸ—ƒ Standards and Regulations for information security.md b/Corpus/Standards/other/πŸ—ƒ Standards and Regulations for information security.md index 14d7f93..8167f49 100644 --- a/Corpus/Standards/other/πŸ—ƒ Standards and Regulations for information security.md +++ b/Corpus/Standards/other/πŸ—ƒ Standards and Regulations for information security.md @@ -23,7 +23,7 @@ Not really a standard or regulation, but excellent nonetheless, the UK's [NCSC The NCSC’s Board Toolkit helps boards to ensure that cyber resilience and risk management are embedded throughout an organisation, including its people, systems, processes and technologies. ## Cross references -- [Secure Controls Framework](../../πŸ“šοΈ%20Literature%20notes/Secure%20Controls%20Framework.md) brings a lot of those together, see their Secure Controls Framework (SCF) - 2022.1 matrix.xslx. -- [Mapping NIST Controls to ISO Standards](../../πŸ“šοΈ%20Literature%20notes/Mapping%20NIST%20Controls%20to%20ISO%20Standards.md) +- [Secure Controls Framework](../../Literature%20notes/Secure%20Controls%20Framework.md) brings a lot of those together, see their Secure Controls Framework (SCF) - 2022.1 matrix.xslx. +- [Mapping NIST Controls to ISO Standards](../../Literature%20notes/Mapping%20NIST%20Controls%20to%20ISO%20Standards.md) [CSA Cloud Controls Matrix](CSA%20Cloud%20Controls%20Matrix.md) diff --git a/Corpus/_Corpus-metadata.md b/Corpus/_Corpus-metadata.md new file mode 100644 index 0000000..aa27ad3 --- /dev/null +++ b/Corpus/_Corpus-metadata.md @@ -0,0 +1,21 @@ +# Corpus Metadata + +- All notes in this Obsidian vault need metadata. +- These metadata need to follow the [Obsidian Front Matter Syntax](../../Content%20Factory/Obsidian%20Front%20Matter%20Syntax.md). +- Every note will get a field ’notetype’ in its front matter – see below for possible values. + +## Notetypes for Obsidian Corpus + +Every note will get a field ’notetype’ in its front matter. + +The field will have one of the following values: +- guide: guided, hands-on lessons, learning by doing, interactive lessons +- explanation: background and context to the standards, paraphrases of the original standard texts, opinion, discussion, underlying principles, interpretation +- application: steps to solve a specific, real-world problem. Implementing the standard in real world environments, implementation aids, implementation examples, templates, etc. +- reference: for original standard texts, dictionaries, terms and definitions. +- other: for all notes that, by there content, cannot be placed in one for the previous categories. + +Note: +- The original standard texts in the OST folder and subfolders are also tagged with β€œsourcetext”. The body of these notes must never be changed! +- Notes in the iso27DIY-gis/guide folder and subfolders are typically of the guide type. +- Notes in iso27DIY-gis/reference and subfolders are typically of the explanation or application type. diff --git a/Corpus/πŸŽ‡ Sparks/AI Threat Modeling.md b/Corpus/πŸŽ‡ Sparks/AI Threat Modeling.md deleted file mode 100644 index 8eb946b..0000000 --- a/Corpus/πŸŽ‡ Sparks/AI Threat Modeling.md +++ /dev/null @@ -1 +0,0 @@ -[Create a threat analysis chatbot](../πŸ’‘Drafts%20and%20Ideas/Controls/Create%20a%20threat%20analysis%20chatbot.md) diff --git a/Corpus/πŸŽ‡ Sparks/Artikel 39 Taken van de functionaris voor gegevensbescherming.md b/Corpus/πŸŽ‡ Sparks/Artikel 39 Taken van de functionaris voor gegevensbescherming.md deleted file mode 100644 index af9fe4c..0000000 --- a/Corpus/πŸŽ‡ Sparks/Artikel 39 Taken van de functionaris voor gegevensbescherming.md +++ /dev/null @@ -1,2 +0,0 @@ -Zie ook: [DPOaaS offer Glownexus](../πŸ“šοΈ%20Literature%20notes/DPOaaS%20offer%20Glownexus.md) - diff --git a/Corpus/πŸŽ‡ Sparks/Awareness.md b/Corpus/πŸŽ‡ Sparks/Awareness.md deleted file mode 100644 index 2acdedb..0000000 --- a/Corpus/πŸŽ‡ Sparks/Awareness.md +++ /dev/null @@ -1,2 +0,0 @@ -[Seven Dimensions of Security Culture](../πŸ“šοΈ%20Literature%20notes/Seven%20Dimensions%20of%20Security%20Culture.md) - diff --git a/Corpus/πŸŽ‡ Sparks/Examples of vendor selection questionnaires.md b/Corpus/πŸŽ‡ Sparks/Examples of vendor selection questionnaires.md deleted file mode 100644 index d93e38b..0000000 --- a/Corpus/πŸŽ‡ Sparks/Examples of vendor selection questionnaires.md +++ /dev/null @@ -1,5 +0,0 @@ -- [Dropbox](../πŸ“šοΈ%20Literature%20notes/Dropbox%20Supplier%20Security%20Requirements.md) -- [Google](https://vsaq-demo.withgoogle.com) - -Related: -- [Vendor security MoC](Vendor%20security%20MoC.md) \ No newline at end of file diff --git a/Corpus/πŸŽ‡ Sparks/Sticky labels.md b/Corpus/πŸŽ‡ Sparks/Sticky labels.md deleted file mode 100644 index 2f6dfc3..0000000 --- a/Corpus/πŸŽ‡ Sparks/Sticky labels.md +++ /dev/null @@ -1,4 +0,0 @@ -Data travels; how to make labels stick? - -Links to the [Privacy](../πŸ’‘Drafts%20and%20Ideas/Privacy.md) issue of [Data Provenance](Data%20Provenance.md) . - diff --git a/Corpus/πŸ“— Information security concepts MoC.md b/Corpus/πŸ“— Information security concepts MoC.md deleted file mode 100644 index 8877780..0000000 --- a/Corpus/πŸ“— Information security concepts MoC.md +++ /dev/null @@ -1,81 +0,0 @@ ---- -Related: -<<<<<<< HEAD - - "[ISO\\_27002\\_OT 3 Terms, definitions and abbreviated terms](Standards/ISO27x/OST/27002/EN/a-3-Terms-definitions-and-abbreviated-terms.md)" -||||||| 2d92263 - - "[ISO\\_27002\\_OT 3 Terms, definitions and abbreviated terms](Standards/ISO27x/OST/27002/EN/ISO_27002_OT%203%20Terms,%20definitions%20and%20abbreviated%20terms.md)" -======= - - "[ISO\\_27002\\_OT 3 Terms, definitions and abbreviated terms](Standards/ISO27x/OST/27002/EN/a-3-Terms-definitions-and-abbreviated%20terms.md)" ->>>>>>> 27002-metadata - - https://csiac.org/databases/acronyms/ -tags: - - type/MoC ---- -[Assets](πŸŽ‡%20Sparks/Assets.md) - [NIST Asset Types](πŸ“šοΈ%20Literature%20notes/NIST%20Asset%20Types.md) - [Asset lifecycle](πŸ“šοΈ%20Literature%20notes/Asset%20lifecycle.md) - [Asset ownership](πŸŽ‡%20Sparks/Asset%20ownership.md) - [[Asset ownership DEL]] - [Assets, Vulnerabilities, Threats, Risks](πŸ“šοΈ%20Literature%20notes/Assets,%20Vulnerabilities,%20Threats,%20Risks.md) -[Assets, Vulnerabilities, Threats, Risks](πŸŽ‡%20Sparks/Assets,%20Vulnerabilities,%20Threats,%20Risks.md) -[Attack Surface Analysis](πŸ“šοΈ%20Literature%20notes/Attack%20Surface%20Analysis.md) -[Authentication](Standards/ISO27x/Authentication.md) - [Multi-factor authentication](πŸŽ‡%20Sparks/Multi-factor%20authentication.md) (MFA) - [Passwordless Authentication](πŸŽ‡%20Sparks/Passwordless%20Authentication.md) - [Risk-Based Authentication](πŸŽ‡%20Sparks/Risk-Based%20Authentication.md) - [Single Sign On (SSO)](πŸ“šοΈ%20Literature%20notes/Single%20Sign%20On%20(SSO).md) - [Tokens](πŸŽ‡%20Sparks/Tokens.md) -[Authorization](Standards/ISO27x/Authorization.md) - [Access Control](πŸŽ‡%20Sparks/Access%20Control.md) -[Awareness](πŸŽ‡%20Sparks/Awareness.md) -[BCP_BedrijfscontinuΓ―teitsplanning](πŸ“šοΈ%20Literature%20notes/BCP_BedrijfscontinuΓ―teitsplanning.md) - [Business Impact Analysis (BIA)](πŸŽ‡%20Sparks/Business%20Impact%20Analysis%20(BIA).md) - [Disaster Recovery Planning](πŸŽ‡%20Sparks/Disaster%20Recovery%20Planning.md) -[Change management MoC](MoCs/Change%20management%20MoC.md) -[Classification](πŸŽ‡%20Sparks/Classification.md) -[Compliance](πŸŽ‡%20Sparks/Compliance.md) -[Data Breach](πŸ’‘Permanent%20ideas/Data%20Breach.md) -[Data Governance](πŸ“šοΈ%20Literature%20notes/Data%20Governance.md) -Frameworks - [ISO 27k family](../../iso27DIY-gis/reference/Examples/ISO%2027k%20family.md) - [NIST articles list](Standards/NIST/NIST%20articles%20list.md) -[Governance](πŸŽ‡%20Sparks/Governance.md) -[[Hardening]] -[Identity and Access Management (IAM)](πŸ’‘Drafts%20and%20Ideas/Identity%20and%20Access%20Management%20(IAM).md) - [Identification](πŸ’‘Drafts%20and%20Ideas/Identification.md) - [Authentication](Standards/ISO27x/Authentication.md) - [Authorization](Standards/ISO27x/Authorization.md) -Impact - [Change management MoC](MoCs/Change%20management%20MoC.md) - [Impact of Disruption](πŸ’‘Drafts%20and%20Ideas/Impact%20of%20Disruption.md) -[Incidents](πŸŽ‡%20Sparks/Incidents.md) -[Maturity Models](πŸ“šοΈ%20Literature%20notes/Maturity%20Models.md) -[Metrics](πŸ“šοΈ%20Literature%20notes/InfoSec%20Metrics.md) -[Operational Technology](πŸ’‘Drafts%20and%20Ideas/Operational%20Technology.md) or OT Security -[Policies](πŸ“šοΈ%20Literature%20notes/Policies.md) -[[Posture Management]] -[Ransomware](πŸŽ‡%20Sparks/Ransomware.md) -[Risks](πŸŽ‡%20Sparks/Risks.md) - [Risk analysis](πŸŽ‡%20Sparks/Risk%20analysis.md) - [Risk appetite](πŸ’‘Drafts%20and%20Ideas/Risk%20appetite.md) - [Risk inventories](πŸŽ‡%20Sparks/Risk%20inventories.md) - [Risk management](πŸŽ‡%20Sparks/Risk%20management.md) - [Risk ownership](πŸŽ‡%20Sparks/Risk%20ownership.md) - [Risk ownership](πŸŽ‡%20Sparks/Risk%20ownership.md) - [Risk prioritization](πŸŽ‡%20Sparks/Risk%20prioritization.md) - [Risk tolerance](πŸŽ‡%20Sparks/Risk%20tolerance.md) - [Risk treatment](πŸŽ‡%20Sparks/Risk%20treatment.md) - [Risks vs Threats vs Vulnerabilities](πŸŽ‡%20Sparks/Risks%20vs%20Threats%20vs%20Vulnerabilities.md) -[Roles and Responsibilities](πŸŽ‡%20Sparks/Roles%20and%20Responsibilities.md) -[Threat](πŸ“šοΈ%20Literature%20notes/Threat.md) - [Threat Intelligence](πŸŽ‡%20Sparks/Threat%20Intelligence.md) - [Security Threat Modeling](πŸ“šοΈ%20Literature%20notes/Security%20Threat%20Modeling.md) - [Privacy Threat Modeling](πŸ“šοΈ%20Literature%20notes/Privacy%20Threat%20Modeling.md) - [AI Threat Modeling](πŸŽ‡%20Sparks/AI%20Threat%20Modeling.md) - [Threat Catalogues](πŸ“šοΈ%20Literature%20notes/Threat%20Catalogues.md) -[Vendor security MoC](πŸŽ‡%20Sparks/Vendor%20security%20MoC.md) or Supply chain security -[Vulnerability](πŸ’‘Drafts%20and%20Ideas/Vulnerability.md) - [Bug bounty program](πŸŽ‡%20Sparks/Bug%20bounty%20program.md) -[Zero Trust](πŸ“šοΈ%20Literature%20notes/Zero%20Trust.md) - - diff --git a/Corpus/πŸ“šοΈ Literature notes/Examples of TLP document classification for different industries.md b/Corpus/πŸ“šοΈ Literature notes/Examples of TLP document classification for different industries.md deleted file mode 100644 index 5628cab..0000000 --- a/Corpus/πŸ“šοΈ Literature notes/Examples of TLP document classification for different industries.md +++ /dev/null @@ -1,12 +0,0 @@ -# Examples of TLP document classification for different industries - -- [for information security](../πŸŽ‡%20Sparks/FIRST%20TLP%20labeled%20document%20examples%20for%20information%20security.md) -- [for a commercial services organization](../πŸŽ‡%20Sparks/FIRST%20TLP%20labeled%20document%20examples%20commercial.md) -- [for a childcare organization](../πŸŽ‡%20Sparks/FIRST%20TLP%20labeled%20document%20examples%20childcare.md) -- [for a hospital](../πŸŽ‡%20Sparks/FIRST%20TLP%20labeled%20document%20examples%20hospital.md) -- [for a national government organization](FIRST%20TLP%20labeled%20document%20examples%20national%20government.md) - - -![](../πŸ“Ž%20Attachments/TLP_Impact_matrix_NL.xlsx) - - diff --git a/prepend_frontmatter.py b/prepend_frontmatter.py deleted file mode 100644 index 0827aae..0000000 --- a/prepend_frontmatter.py +++ /dev/null @@ -1,2320 +0,0 @@ -#!/usr/bin/env python3 -""" -prepend_frontmatter.py - -For each ISO 27002 control note in the target folder: -- Skips files that already have YAML frontmatter (starts with ---) -- Skips a-3-Terms* -- Prepends the correct frontmatter block and writes the file back - -Run from anywhere: - python3 prepend_frontmatter.py - -Requires Python 3.6+. No dependencies. -""" - -import os - -VAULT_DIR = "/Users/rico/src/iso27diy-corp/Corpus/Standards/ISO27x/OST/27002/EN" - -FRONTMATTER = { - "a-5.1-Policies-for-information-security.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.1" -title: "Policies for information security" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Identify] -operational_capabilities: [Governance] -security_domains: - - Governance_and_Ecosystem - - Resilience -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.2-Information-security-roles-and-responsibilities.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.2" -title: "Information security roles and responsibilities" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Identify] -operational_capabilities: [Governance] -security_domains: - - Governance_and_Ecosystem - - Protection - - Resilience -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.3-Segregation-of-duties.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.3" -title: "Segregation of duties" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Governance - - Identity_and_access_management -security_domains: [Governance_and_Ecosystem] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.4-Management-responsibilities.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.4" -title: "Management responsibilities" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Identify] -operational_capabilities: [Governance] -security_domains: [Governance_and_Ecosystem] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.5-Contact-with-authorities.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.5" -title: "Contact with authorities" -theme: Organizational -control_type: - - Preventive - - Corrective -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Identify - - Protect - - Respond - - Recover -operational_capabilities: [Governance] -security_domains: - - Defence - - Resilience -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.6-Contact-with-special-interest-groups.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.6" -title: "Contact with special interest groups" -theme: Organizational -control_type: - - Preventive - - Corrective -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Protect - - Respond - - Recover -operational_capabilities: [Governance] -security_domains: [Defence] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.7-Threat-intelligence.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.7" -title: "Threat intelligence" -theme: Organizational -control_type: - - Preventive - - Detective - - Corrective -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Identify - - Detect - - Respond -operational_capabilities: [Threat_and_vulnerability_management] -security_domains: - - Defence - - Resilience -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.8-Information-security-in-project-management.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.8" -title: "Information security in project management" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Identify - - Protect -operational_capabilities: [Governance] -security_domains: - - Governance_and_Ecosystem - - Protection -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.9-Inventory-of-information-and-other-associated-assets.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.9" -title: "Inventory of information and other associated assets" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Identify] -operational_capabilities: [Asset_management] -security_domains: - - Governance_and_Ecosystem - - Protection -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.10-Acceptable-use-of-information-and-other-associated-assets.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.10" -title: "Acceptable use of information and other associated assets" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Asset_management - - Information_protection -security_domains: - - Governance_and_Ecosystem - - Protection -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.11-Return-of-assets.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.11" -title: "Return of assets" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Asset_management] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.12-Classification-of-information.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.12" -title: "Classification of information" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Identify] -operational_capabilities: [Information_protection] -security_domains: - - Protection - - Defence -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.13-Labelling-of-information.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.13" -title: "Labelling of information" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Information_protection] -security_domains: - - Defence - - Protection -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.14-Information-transfer.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.14" -title: "Information transfer" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Asset_management - - Information_protection -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.15-Access-control.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.15" -title: "Access control" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Identity_and_access_management] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.16-Identity-management.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.16" -title: "Identity management" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Identity_and_access_management] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.17-Authentication-information.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.17" -title: "Authentication information" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Identity_and_access_management] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.18-Access-rights.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.18" -title: "Access rights" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Identity_and_access_management] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.19-Information-security-in-supplier-relationships.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.19" -title: "Information security in supplier relationships" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Identify] -operational_capabilities: [Supplier_relationships_security] -security_domains: - - Governance_and_Ecosystem - - Protection -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.20-Addressing-information-security-within-supplier-agreements.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.20" -title: "Addressing information security within supplier agreements" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Identify] -operational_capabilities: [Supplier_relationships_security] -security_domains: - - Governance_and_Ecosystem - - Protection -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.21-Managing-information-security-in-the-ICT-supply-chain.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.21" -title: "Managing information security in the ICT supply chain" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Identify] -operational_capabilities: [Supplier_relationships_security] -security_domains: - - Governance_and_Ecosystem - - Protection -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.22-Monitoring-review-and-change-management-of-supplier-services.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.22" -title: "Monitoring, review and change management of supplier services" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Identify] -operational_capabilities: [Supplier_relationships_security] -security_domains: - - Governance_and_Ecosystem - - Protection - - Defence - - Information_security_assurance -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.23-Information-security-for-use-of-cloud-services.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.23" -title: "Information security for use of cloud services" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Supplier_relationships_security] -security_domains: - - Governance_and_Ecosystem - - Protection -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.24-Information-security-incident-management-planning-and-preparation.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.24" -title: "Information security incident management planning and preparation" -theme: Organizational -control_type: [Corrective] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Respond - - Recover -operational_capabilities: - - Governance - - Information_security_event_management -security_domains: [Defence] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.25-Assessment-and-decision-on-information-security-events.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.25" -title: "Assessment and decision on information security events" -theme: Organizational -control_type: [Detective] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Detect - - Respond -operational_capabilities: [Information_security_event_management] -security_domains: [Defence] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.26-Response-to-information-security-incidents.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.26" -title: "Response to information security incidents" -theme: Organizational -control_type: [Corrective] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Respond - - Recover -operational_capabilities: [Information_security_event_management] -security_domains: [Defence] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.27-Learning-from-information-security-incidents.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.27" -title: "Learning from information security incidents" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Identify - - Protect -operational_capabilities: [Information_security_event_management] -security_domains: [Defence] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.28-Collection-of-evidence.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.28" -title: "Collection of evidence" -theme: Organizational -control_type: [Corrective] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Detect - - Respond -operational_capabilities: [Information_security_event_management] -security_domains: [Defence] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.29-Information-security-during-disruption.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.29" -title: "Information security during disruption" -theme: Organizational -control_type: - - Preventive - - Corrective -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Protect - - Respond -operational_capabilities: [Continuity] -security_domains: - - Protection - - Resilience -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.30-ICT-readiness-for-business-continuity.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.30" -title: "ICT readiness for business continuity" -theme: Organizational -control_type: [Corrective] -information_security_properties: [Availability] -cybersecurity_concepts: [Respond] -operational_capabilities: [Continuity] -security_domains: [Resilience] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.31-Legal-statutory-regulatory-and-contractual-requirements.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.31" -title: "Legal, statutory, regulatory and contractual requirements" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Identify] -operational_capabilities: [Legal_and_compliance] -security_domains: - - Governance_and_Ecosystem - - Protection -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.32-Intellectual-property-rights.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.32" -title: "Intellectual property rights" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Identify] -operational_capabilities: [Legal_and_compliance] -security_domains: [Governance_and_Ecosystem] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.33-Protection-of-records.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.33" -title: "Protection of records" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Identify - - Protect -operational_capabilities: - - Legal_and_compliance - - Asset_management - - Information_protection -security_domains: [Defence] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.34-Privacy-and-protection-of-PII.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.34" -title: "Privacy and protection of PII" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Identify - - Protect -operational_capabilities: - - Information_protection - - Legal_and_compliance -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.35-Independent-review-of-information-security.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.35" -title: "Independent review of information security" -theme: Organizational -control_type: - - Preventive - - Corrective -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Identify - - Protect -operational_capabilities: [Information_security_assurance] -security_domains: [Governance_and_Ecosystem] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.36-Compliance-with-policies-rules-and-standards-for-information-security.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.36" -title: "Compliance with policies, rules and standards for information security" -theme: Organizational -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Identify - - Protect -operational_capabilities: - - Legal_and_compliance - - Information_security_assurance -security_domains: [Governance_and_Ecosystem] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-5.37-Documented-operating-procedures.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.5.37" -title: "Documented operating procedures" -theme: Organizational -control_type: - - Preventive - - Corrective -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Protect - - Recover -operational_capabilities: - - Asset_management - - Physical_security - - System_and_network_security - - Application_security - - Secure_configuration - - Identity_and_access_management - - Threat_and_vulnerability_management - - Continuity - - Information_security_event_management -security_domains: - - Governance_and_Ecosystem - - Protection - - Defence -tags: - - iso27002/2022/EN -status: active ----""", - - "a-6.1-Screening.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.6.1" -title: "Screening" -theme: People -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Human_resource_security] -security_domains: [Governance_and_Ecosystem] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-6.2-Terms-and-conditions-of-employment.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.6.2" -title: "Terms and conditions of employment" -theme: People -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Human_resource_security] -security_domains: [Governance_and_Ecosystem] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-6.3-Information-security-awareness-education-and-training.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.6.3" -title: "Information security awareness, education and training" -theme: People -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Human_resource_security] -security_domains: [Governance_and_Ecosystem] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-6.4-Disciplinary-process.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.6.4" -title: "Disciplinary process" -theme: People -control_type: - - Preventive - - Corrective -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Protect - - Respond -operational_capabilities: [Human_resource_security] -security_domains: [Governance_and_Ecosystem] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-6.5-Responsibilities-after-termination-or-change-of-employment.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.6.5" -title: "Responsibilities after termination or change of employment" -theme: People -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Human_resource_security - - Asset_management -security_domains: [Governance_and_Ecosystem] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-6.6-Confidentiality-or-non-disclosure-agreements.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.6.6" -title: "Confidentiality or non-disclosure agreements" -theme: People -control_type: [Preventive] -information_security_properties: [Confidentiality] -cybersecurity_concepts: [Protect] -operational_capabilities: - - Human_resource_security - - Information_protection - - Supplier_relationships_security -security_domains: [Governance_and_Ecosystem] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-6.7-Remote-working.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.6.7" -title: "Remote working" -theme: People -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Asset_management - - Information_protection - - Physical_security - - System_and_network_security -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-6.8-Information-security-event-reporting.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.6.8" -title: "Information security event reporting" -theme: People -control_type: [Detective] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Detect] -operational_capabilities: [Information_security_event_management] -security_domains: [Defence] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-7.1-Physical-security-perimeters.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.7.1" -title: "Physical security perimeters" -theme: Physical -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Physical_security] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-7.2-Physical-entry.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.7.2" -title: "Physical entry" -theme: Physical -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Physical_security - - Identity_and_access_management -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-7.3-Securing-offices-rooms-and-facilities.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.7.3" -title: "Securing offices, rooms and facilities" -theme: Physical -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Physical_security - - Asset_management -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-7.4-Physical-security-monitoring.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.7.4" -title: "Physical security monitoring" -theme: Physical -control_type: - - Preventive - - Detective -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Protect - - Detect -operational_capabilities: [Physical_security] -security_domains: - - Protection - - Defence -tags: - - iso27002/2022/EN -status: active ----""", - - "a-7.5-Protecting-against-physical-and-environmental-threats.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.7.5" -title: "Protecting against physical and environmental threats" -theme: Physical -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Physical_security] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-7.6-Working-in-secure-areas.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.7.6" -title: "Working in secure areas" -theme: Physical -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Physical_security] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-7.7-Clear-desk-and-clear-screen.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.7.7" -title: "Clear desk and clear screen" -theme: Physical -control_type: [Preventive] -information_security_properties: [Confidentiality] -cybersecurity_concepts: [Protect] -operational_capabilities: [Physical_security] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-7.8-Equipment-siting-and-protection.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.7.8" -title: "Equipment siting and protection" -theme: Physical -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Physical_security - - Asset_management -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-7.9-Security-of-assets-off-premises.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.7.9" -title: "Security of assets off-premises" -theme: Physical -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Physical_security - - Asset_management -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-7.10-Storage-media.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.7.10" -title: "Storage media" -theme: Physical -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Physical_security - - Asset_management -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-7.11-Supporting-utilities.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.7.11" -title: "Supporting utilities" -theme: Physical -control_type: - - Preventive - - Detective -information_security_properties: - - Integrity - - Availability -cybersecurity_concepts: - - Protect - - Detect -operational_capabilities: [Physical_security] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-7.12-Cabling-security.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.7.12" -title: "Cabling security" -theme: Physical -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Physical_security] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-7.13-Equipment-maintenance.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.7.13" -title: "Equipment maintenance" -theme: Physical -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Physical_security - - Asset_management -security_domains: - - Protection - - Resilience -tags: - - iso27002/2022/EN -status: active ----""", - - "a-7.14-Secure-disposal-or-re-use-of-equipment.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.7.14" -title: "Secure disposal or re-use of equipment" -theme: Physical -control_type: [Preventive] -information_security_properties: [Confidentiality] -cybersecurity_concepts: [Protect] -operational_capabilities: - - Physical_security - - Asset_management -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.1-User-endpoint-devices.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.1" -title: "User endpoint devices" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Asset_management - - Information_protection -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.2-Privileged-access-rights.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.2" -title: "Privileged access rights" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Identity_and_access_management] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.3-Information-access-restriction.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.3" -title: "Information access restriction" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Identity_and_access_management] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.4-Access-to-source-code.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.4" -title: "Access to source code" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Identity_and_access_management - - Application_security - - Secure_configuration -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.5-Secure-authentication.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.5" -title: "Secure authentication" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Identity_and_access_management] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.6-Capacity-management.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.6" -title: "Capacity management" -theme: Technological -control_type: - - Preventive - - Detective -information_security_properties: - - Integrity - - Availability -cybersecurity_concepts: - - Identify - - Protect - - Detect -operational_capabilities: [Continuity] -security_domains: - - Governance_and_Ecosystem - - Protection -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.7-Protection-against-malware.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.7" -title: "Protection against malware" -theme: Technological -control_type: - - Preventive - - Detective - - Corrective -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Protect - - Detect -operational_capabilities: - - System_and_network_security - - Information_protection -security_domains: - - Protection - - Defence -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.8-Management-of-technical-vulnerabilities.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.8" -title: "Management of technical vulnerabilities" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Identify - - Protect -operational_capabilities: [Threat_and_vulnerability_management] -security_domains: - - Governance_and_Ecosystem - - Protection - - Defence -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.9-Configuration-management.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.9" -title: "Configuration management" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Secure_configuration] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.10-Information-deletion.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.10" -title: "Information deletion" -theme: Technological -control_type: [Preventive] -information_security_properties: [Confidentiality] -cybersecurity_concepts: [Protect] -operational_capabilities: - - Information_protection - - Legal_and_compliance -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.11-Data-masking.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.11" -title: "Data masking" -theme: Technological -control_type: [Preventive] -information_security_properties: [Confidentiality] -cybersecurity_concepts: [Protect] -operational_capabilities: [Information_protection] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.12-Data-leakage-prevention.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.12" -title: "Data leakage prevention" -theme: Technological -control_type: - - Preventive - - Detective -information_security_properties: [Confidentiality] -cybersecurity_concepts: - - Protect - - Detect -operational_capabilities: [Information_protection] -security_domains: - - Protection - - Defence -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.13-Information-backup.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.13" -title: "Information backup" -theme: Technological -control_type: [Corrective] -information_security_properties: - - Integrity - - Availability -cybersecurity_concepts: [Recover] -operational_capabilities: [Continuity] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.14-Redundancy-of-information-processing-facilities.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.14" -title: "Redundancy of information processing facilities" -theme: Technological -control_type: [Preventive] -information_security_properties: [Availability] -cybersecurity_concepts: [Protect] -operational_capabilities: - - Continuity - - Asset_management -security_domains: - - Protection - - Resilience -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.15-Logging.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.15" -title: "Logging" -theme: Technological -control_type: [Detective] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Detect] -operational_capabilities: [Information_security_event_management] -security_domains: - - Protection - - Defence -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.16-Monitoring-activities.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.16" -title: "Monitoring activities" -theme: Technological -control_type: - - Detective - - Corrective -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Detect - - Respond -operational_capabilities: [Information_security_event_management] -security_domains: [Defence] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.17-Clock-synchronization.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.17" -title: "Clock synchronization" -theme: Technological -control_type: [Detective] -information_security_properties: [Integrity] -cybersecurity_concepts: - - Protect - - Detect -operational_capabilities: [Information_security_event_management] -security_domains: - - Protection - - Defence -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.18-Use-of-privileged-utility-programs.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.18" -title: "Use of privileged utility programs" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - System_and_network_security - - Secure_configuration - - Application_security -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.19-Installation-of-software-on-operational-systems.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.19" -title: "Installation of software on operational systems" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Secure_configuration - - Application_security -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.20-Networks-security.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.20" -title: "Networks security" -theme: Technological -control_type: - - Preventive - - Detective -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Protect - - Detect -operational_capabilities: [System_and_network_security] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.21-Security-of-network-services.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.21" -title: "Security of network services" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [System_and_network_security] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.22-Segregation-of-networks.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.22" -title: "Segregation of networks" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [System_and_network_security] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.23-Web-filtering.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.23" -title: "Web filtering" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [System_and_network_security] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.24-Use-of-cryptography.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.24" -title: "Use of cryptography" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: [Secure_configuration] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.25-Secure-development-life-cycle.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.25" -title: "Secure development life cycle" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Application_security - - System_and_network_security -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.26-Application-security-requirements.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.26" -title: "Application security requirements" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Application_security - - System_and_network_security -security_domains: - - Protection - - Defence -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.27-Secure-system-architecture-and-engineering-principles.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.27" -title: "Secure system architecture and engineering principles" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Application_security - - System_and_network_security -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.28-Secure-coding.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.28" -title: "Secure coding" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Application_security - - System_and_network_security -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.29-Security-testing-in-development-and-acceptance.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.29" -title: "Security testing in development and acceptance" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Identify] -operational_capabilities: - - Application_security - - Information_security_assurance - - System_and_network_security -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.30-Outsourced-development.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.30" -title: "Outsourced development" -theme: Technological -control_type: - - Preventive - - Detective -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: - - Identify - - Protect - - Detect -operational_capabilities: - - System_and_network_security - - Application_security - - Supplier_relationships_security -security_domains: - - Governance_and_Ecosystem - - Protection -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.31-Separation-of-development-test-and-production-environments.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.31" -title: "Separation of development, test and production environments" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Application_security - - System_and_network_security -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.32-Change-management.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.32" -title: "Change management" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - Application_security - - System_and_network_security -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.33-Test-information.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.33" -title: "Test information" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity -cybersecurity_concepts: [Protect] -operational_capabilities: [Information_protection] -security_domains: [Protection] -tags: - - iso27002/2022/EN -status: active ----""", - - "a-8.34-Protection-of-information-systems-during-audit-testing.md": """--- -notetype: sourcetext -standard: ISO 27002 -version: 2022 -language: EN -type: control -id: "A.8.34" -title: "Protection of information systems during audit testing" -theme: Technological -control_type: [Preventive] -information_security_properties: - - Confidentiality - - Integrity - - Availability -cybersecurity_concepts: [Protect] -operational_capabilities: - - System_and_network_security - - Information_protection -security_domains: - - Governance_and_Ecosystem - - Protection -tags: - - iso27002/2022/EN -status: active ----""", -} - - -def main(): - written = [] - skipped_fm = [] - skipped_missing = [] - errors = [] - - for filename, frontmatter in sorted(FRONTMATTER.items()): - filepath = os.path.join(VAULT_DIR, filename) - - if not os.path.exists(filepath): - skipped_missing.append(filename) - continue - - with open(filepath, "r", encoding="utf-8") as f: - content = f.read() - - if content.startswith("---"): - skipped_fm.append(filename) - continue - - new_content = frontmatter + "\n\n" + content - - with open(filepath, "w", encoding="utf-8") as f: - f.write(new_content) - - written.append(filename) - - print(f"Written: {len(written)}") - print(f"Already had FM: {len(skipped_fm)}") - print(f"File not found: {len(skipped_missing)}") - print(f"Errors: {len(errors)}") - - if skipped_fm: - print("\nAlready had frontmatter (skipped):") - for f in skipped_fm: - print(f" {f}") - if skipped_missing: - print("\nNot found (skipped):") - for f in skipped_missing: - print(f" {f}") - if errors: - print("\nErrors:") - for e in errors: - print(f" {e}") - - -if __name__ == "__main__": - main() \ No newline at end of file diff --git a/🏭 Clients/Gastenhuis/Gastenhuis Projectaanpak.canvas b/🏭 Clients/Gastenhuis/Gastenhuis Projectaanpak.canvas deleted file mode 100644 index 938d256..0000000 --- a/🏭 Clients/Gastenhuis/Gastenhuis Projectaanpak.canvas +++ /dev/null @@ -1,557 +0,0 @@ -{ - "nodes": [ - { - "id": "09f6d6c1e8efb6e6", - "type": "group", - "x": -460, - "y": 1080, - "width": 1160, - "height": 620, - "label": "Beleid voor Uitvoering (H8)" - }, - { - "id": "7a48b34c6273cdae", - "type": "group", - "x": -460, - "y": -580, - "width": 1160, - "height": 540, - "label": "Context, Strategie en Leiderschap (H4, H5)" - }, - { - "id": "6110ac3efe0e4494", - "type": "group", - "x": -460, - "y": 560, - "width": 1160, - "height": 400, - "label": "PDCA voor Risicomanagement met de Canvas Methode (H8.2, H8.3)" - }, - { - "id": "07178dd4253722ab", - "type": "group", - "x": -460, - "y": 80, - "width": 1160, - "height": 360, - "label": "Risico's en Maatregelen (H6)" - }, - { - "id": "288cd10d35aa383a", - "type": "group", - "x": 300, - "y": 1800, - "width": 400, - "height": 360, - "label": "Evaluatie en Verbetering (H9, H10)" - }, - { - "id": "1520dd2bd87611ec", - "type": "group", - "x": -80, - "y": 1800, - "width": 339, - "height": 360, - "label": "Documentatie (H7.5)" - }, - { - "id": "1cd9769688fd69c3", - "type": "group", - "x": -460, - "y": 1800, - "width": 330, - "height": 360, - "label": "Ondersteuning (H7.1-4)" - }, - { - "id": "82679ef2d10465f6", - "type": "text", - "text": "Asset Inventarisatie (A5.9)", - "styleAttributes": {}, - "x": 320, - "y": 110, - "width": 340, - "height": 80 - }, - { - "id": "90146875843a9610", - "type": "text", - "text": "Dataclassificatie (A5.12)", - "styleAttributes": {}, - "x": 320, - "y": 220, - "width": 340, - "height": 80 - }, - { - "id": "f967f99a6d088039", - "type": "text", - "text": "Rollen en Verantw.heden (A5.2-5.4)", - "styleAttributes": {}, - "x": -50, - "y": 330, - "width": 340, - "height": 80 - }, - { - "id": "53437152acfbfaa1", - "type": "text", - "text": "Planning Maatregelen (H8.1)", - "styleAttributes": {}, - "x": 320, - "y": 330, - "width": 340, - "height": 80 - }, - { - "id": "4c92dc5b2f76a9a5", - "type": "text", - "text": "Risicoinventarisatie (H6.1.2)", - "styleAttributes": {}, - "x": -50, - "y": 110, - "width": 340, - "height": 80 - }, - { - "id": "4db47e26ac77f040", - "type": "text", - "text": "Penetratie test (A5.35, A8.8)", - "styleAttributes": { - "textAlign": null - }, - "x": -420, - "y": 220, - "width": 340, - "height": 80 - }, - { - "id": "872cfd9071333367", - "type": "text", - "text": "Risicoanalyse (H6.1.2)", - "styleAttributes": {}, - "x": -50, - "y": 220, - "width": 340, - "height": 80 - }, - { - "id": "40e49243a6b68dcb", - "type": "text", - "text": "Identificeren Maatregelen (H6.1.3)", - "styleAttributes": {}, - "x": -420, - "y": 330, - "width": 340, - "height": 80 - }, - { - "id": "464dfc9a3def80c2", - "type": "text", - "text": "Dreigingsanalyse (A5.7)", - "styleAttributes": {}, - "x": -420, - "y": 110, - "width": 340, - "height": 80 - }, - { - "id": "41e3b0bc38d8de84", - "type": "text", - "text": "SWOT analyse (H4.1)", - "styleAttributes": {}, - "x": -420, - "y": -340, - "width": 340, - "height": 80 - }, - { - "id": "763fb2036c5dbdde", - "type": "text", - "text": "DESTEP analyse (H4.2)", - "styleAttributes": {}, - "x": -50, - "y": -340, - "width": 340, - "height": 80 - }, - { - "id": "c8f64dbe95f776d2", - "type": "text", - "text": "Planning ISMS (H6.1.1)", - "styleAttributes": { - "textAlign": "center" - }, - "x": -420, - "y": -140, - "width": 1080, - "height": 60 - }, - { - "id": "047bf657e7c0381f", - "type": "text", - "text": "Functiehuis (H4.1)", - "styleAttributes": {}, - "x": -420, - "y": -240, - "width": 340, - "height": 80 - }, - { - "id": "a3402198a7fa4e49", - "type": "text", - "text": "Bedrijfsprocessen (H4.1)", - "styleAttributes": {}, - "x": -50, - "y": -240, - "width": 340, - "height": 80 - }, - { - "id": "0b7306dec1c85f8d", - "type": "text", - "text": "Stakeholder analyse (H4.2)", - "styleAttributes": {}, - "x": 320, - "y": -340, - "width": 340, - "height": 80 - }, - { - "id": "4d7c1e2e9e3b5995", - "type": "text", - "text": "Wet- en Regelgeving\n(H4.2, A5.31-34)", - "styleAttributes": {}, - "x": 320, - "y": -240, - "width": 340, - "height": 80 - }, - { - "id": "39689fc26569c699", - "type": "text", - "text": "Besturingsmodel (H4.1)", - "styleAttributes": {}, - "x": -50, - "y": -440, - "width": 340, - "height": 80 - }, - { - "id": "a36ad925134021b2", - "type": "text", - "text": "Management Workshop\n(H7.3, A6.3, A6.9)", - "styleAttributes": {}, - "x": 320, - "y": -440, - "width": 340, - "height": 80 - }, - { - "id": "2706559829c7a060", - "type": "text", - "text": "Risicobereidheid (H6.1.2)", - "styleAttributes": {}, - "x": -420, - "y": -440, - "width": 340, - "height": 80 - }, - { - "id": "1f0798149501d740", - "type": "text", - "text": "Bepalen Doelstellingen (H6.2)", - "styleAttributes": {}, - "x": -420, - "y": -540, - "width": 340, - "height": 80 - }, - { - "id": "f0b8fe39fe16ba4e", - "type": "text", - "text": "Bepalen Scope (H4.3)", - "styleAttributes": {}, - "x": -50, - "y": -540, - "width": 340, - "height": 80 - }, - { - "id": "6a322f5cf5bd3f6a", - "type": "text", - "text": "Informatiebeveiligingsbeleid (H5.2)", - "styleAttributes": {}, - "x": 320, - "y": -540, - "width": 340, - "height": 80 - }, - { - "id": "549f8f6976e2591a", - "type": "text", - "text": "Documentatie (H7.5.2)", - "styleAttributes": {}, - "x": -60, - "y": 1840, - "width": 280, - "height": 80 - }, - { - "id": "a2d22052ff7096c5", - "type": "text", - "text": "Review kalender (H7.5.2)", - "styleAttributes": {}, - "x": -60, - "y": 1940, - "width": 280, - "height": 80 - }, - { - "id": "0968542472225677", - "type": "text", - "text": "Communicatieplan (H7.4)", - "styleAttributes": {}, - "x": -60, - "y": 2040, - "width": 280, - "height": 80 - }, - { - "id": "273d40cfef57c393", - "type": "text", - "text": "Audits en Reviews (H9.2, A.5.35-36)", - "styleAttributes": {}, - "x": 320, - "y": 1840, - "width": 280, - "height": 80 - }, - { - "id": "28b11a96eef5c2b0", - "type": "text", - "text": "Management Review (H9.3)", - "styleAttributes": {}, - "x": 320, - "y": 1940, - "width": 280, - "height": 80 - }, - { - "id": "0a5dc3ad69ffafc2", - "type": "text", - "text": "Beschikbaarstellen Middelen (H7.1)", - "styleAttributes": {}, - "x": -440, - "y": 1840, - "width": 280, - "height": 80 - }, - { - "id": "1e34a0d420b8cfcd", - "type": "text", - "text": "Competenties (H7.2)", - "styleAttributes": {}, - "x": -440, - "y": 1940, - "width": 280, - "height": 80 - }, - { - "id": "13dcb395f4d8f739", - "type": "text", - "text": "Afwijkingen en Correcties (H10.1)", - "styleAttributes": {}, - "x": 320, - "y": 2040, - "width": 280, - "height": 80 - }, - { - "id": "d5be08d2d1baa414", - "type": "text", - "text": "Toegangsbeleid\n(A5.15-18, A8.2-5)", - "styleAttributes": {}, - "x": -420, - "y": 1344, - "width": 340, - "height": 80 - }, - { - "id": "314b04a8959f6fb5", - "type": "text", - "text": "Device management\n(A7.9-7.10, A8.1, 8.7)", - "styleAttributes": {}, - "x": -420, - "y": 1445, - "width": 340, - "height": 90 - }, - { - "id": "572c91765b41f7f3", - "type": "text", - "text": "Selectie en implementatie van technologie (A5.8, A5.23, A8.26-33, A.5.38-39, A7.13-14)", - "styleAttributes": {}, - "x": -40, - "y": 1344, - "width": 340, - "height": 80 - }, - { - "id": "79a0be9c6f598831", - "type": "text", - "text": "Leveranciersmanagement (A5.19-A5.23, A8.29)", - "styleAttributes": {}, - "x": 320, - "y": 1344, - "width": 340, - "height": 80 - }, - { - "id": "68a6efa1a776c676", - "type": "text", - "text": "Fysieke beveiliging\n(A7.1-7.8, 7.12)", - "styleAttributes": {}, - "x": -40, - "y": 1445, - "width": 340, - "height": 90 - }, - { - "id": "d3b8c88bc841e209", - "type": "text", - "text": "Business Impact Analyse (A5.29-5.30)", - "styleAttributes": {}, - "x": -40, - "y": 1120, - "width": 340, - "height": 80 - }, - { - "id": "853301ab7242b5ef", - "type": "text", - "text": "Gebruikersbeleid\n(A5.10-14, A5.37, A5.40, A6.7-6.8, A7.7, A8.24)", - "styleAttributes": {}, - "x": -40, - "y": 1235, - "width": 340, - "height": 80 - }, - { - "id": "1e6b25bf6dcb833e", - "type": "text", - "text": "BedrijfscontinuΓ―teitsplan (A5.29-5.30, A5.42, A7.11)", - "styleAttributes": {}, - "x": 320, - "y": 1120, - "width": 340, - "height": 80 - }, - { - "id": "94c365431ffd100e", - "type": "text", - "text": "Bewustzijn en training\n(H7.3, A6.3)", - "styleAttributes": {}, - "x": 320, - "y": 1235, - "width": 340, - "height": 80 - }, - { - "id": "eaa3c32d191b350e", - "type": "text", - "text": "Personeelsbeleid\n(A6.1-6.6)", - "styleAttributes": {}, - "x": -420, - "y": 1235, - "width": 340, - "height": 80 - }, - { - "id": "4184e9e168fd5fdf", - "type": "text", - "text": "Beleid overige maatregelen (A5.1)", - "styleAttributes": {}, - "x": -420, - "y": 1565, - "width": 340, - "height": 90 - }, - { - "id": "6273a5aafc2f54d2", - "type": "text", - "text": "ICT Beheer (A8.7-8.35)", - "styleAttributes": {}, - "x": 320, - "y": 1445, - "width": 340, - "height": 90 - }, - { - "id": "360024c970e70d34", - "type": "text", - "text": "Implementatie maatregelen (H8.3)", - "styleAttributes": { - "textAlign": "center" - }, - "x": -40, - "y": 1565, - "width": 700, - "height": 90 - }, - { - "id": "ff8f4d59b9462109", - "type": "text", - "text": "Incidentenbeheer \n(A5.24-29, A5.43, A6.8)", - "styleAttributes": {}, - "x": -420, - "y": 1120, - "width": 340, - "height": 80 - }, - { - "id": "8cf31932e32c4d1c", - "type": "text", - "text": "Continue verbetering (H10.1)", - "styleAttributes": { - "textAlign": "center" - }, - "x": -408, - "y": 880, - "width": 1068, - "height": 60 - }, - { - "id": "ddfc9917c2c7fc66", - "type": "file", - "file": "iso27diy-corp/Corpus/πŸ“Ž Attachments/Canvas Cyclus.png", - "x": -408, - "y": 620, - "width": 278, - "height": 200 - }, - { - "id": "27d02011ccccb4c0", - "type": "file", - "file": "iso27diy-corp/Corpus/πŸ“Ž Attachments/Canvas Cyclus.png", - "x": -19, - "y": 620, - "width": 278, - "height": 200 - }, - { - "id": "6c394a4088d586b3", - "type": "file", - "file": "iso27diy-corp/Corpus/πŸ“Ž Attachments/Canvas Cyclus.png", - "x": 382, - "y": 620, - "width": 278, - "height": 200 - } - ], - "edges": [], - "metadata": { - "version": "1.0-1.0", - "frontmatter": {} - } -} \ No newline at end of file diff --git a/🏭 Clients/Humankind/Ubeoo ATS vendor selection Humankind.md b/🏭 Clients/Humankind/Ubeoo ATS vendor selection Humankind.md deleted file mode 100644 index 452d06b..0000000 --- a/🏭 Clients/Humankind/Ubeoo ATS vendor selection Humankind.md +++ /dev/null @@ -1,4 +0,0 @@ -- [Programma van Eisen](../../Corpus/πŸ“Ž%20Attachments/Ubeeo%20ATS%20PvE%20240315.xlsx) -- [](Ubeeo%20ATS%20SLA%20Service%20Level%20Agreement.pdf) - -![](Ubeeo%20ATS%20SLA%20Service%20Level%20Agreement.pdf) \ No newline at end of file