Explore articles in the COBIT 19 category
ENISA EUVD will change how EU organizations consume vulnerability intelligence, manage CVD, coordinate suppliers, and evidence NIS2, DORA, GDPR and CRA reporting decisions. This guide shows how ISO/IEC 27001:2022, Clarysec policies, Zenith Blueprint and Zenith Controls turn vulnerability alerts into an auditable operating model.
SBOMs are now core evidence for software supply chain assurance. This guide shows how to operationalize SBOMs through ISO 27001:2022, NIS2, DORA, GDPR, NIST CSF 2.0, COBIT 2019 and Clarysec policies.
A modern Business Impact Analysis connects critical services, ICT assets, suppliers, recovery objectives, continuity testing, and management approval into one defensible evidence chain for ISO/IEC 27001:2022, NIS2, DORA, GDPR, NIST CSF 2.0, and COBIT 2019.
Financial entities need a DORA Register of Information that is more than a spreadsheet. This guide shows how to connect ICT contracts, suppliers, subcontractors, assets, cloud services and ISO/IEC 27001:2022 evidence into one audit-ready operating model.
A practical, scenario-driven guide for CISOs and critical infrastructure teams implementing NIS2 OT security by mapping ISO/IEC 27001:2022, ISO/IEC 27002:2022, IEC 62443, NIST CSF, GDPR, DORA and Clarysec evidence practices.
Data Loss Prevention is no longer a standalone tool configuration. In 2026, CISOs need a policy-led, evidence-backed DLP program that connects data classification, secure transfer, logging, incident response, supplier governance and ISO/IEC 27001:2022 controls to GDPR Article 32, NIS2 and DORA.
A practical ISO 27001:2022-aligned framework for governing ransomware payment decisions, sanctions checks, evidence preservation, insurance approval, NIS2, DORA and GDPR reporting.