Frameworks & Methodologies
Service Frameworks and Methodologies
APQC’s Process Classification Framework
BiSL
DESFM (DoD Enterprise Service Management) Framework
ITIL4
USM (Unified Service Management)
Decision Support Tools
Progress Tools
Implementation Model
Modeling Languages & Architecture
Security Standards
BIO 2
ISA 62443 System security requirements and security levels
ISO 27000 Information Security Management Systems Core Terms
ISO 27001 Information Security Management Systems Requirements
ISO 27002 Information Technology Systems Requirements
ISO 27005 Information Technology — Security techniques - Information security risk management
ISO 27018 Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors
NEN 7510-1+A1
NIST 800-39 Managing Information Security Risk
NIST 800-53r5 Security and Privacy Controls for Information Systems and Organizations
Security Frameworks
CIS Critical Security Controls Version 8.1
Methodology for Information Security Examination with Audit Value (MIAUW)
NIST CSF (Cyber Security Framework) 2.0
NOREA Security Operations Center - Maturity Framework
Good Practices & Community Guidance
DNB Good Practices Information Security 2023
ISF Standard of Good Practice For Information Security
MITRE ATT&CK
OWASP
VNG CISO Toolkit
VNG GDPR Assurance Product 3.0
Privacy & Data Protection
ISO 29100 Information Technology - Security techniques - Privacy Framework
NIST PF (Privacy Framework) 1.1
NOREA Guide ENSIA 6.0
NOREA Guide Privacy Control Framework 3.0
PIA van CNIL
Dutch Laws
Artificial Intelligence Act
Cybersecurity Act
Digital Government Act (Wdo)
Electronic Administrative Transactions Modernisation Act (Wmebv)
Electronic Data Exchange in Healthcare Act (Wegiz)
Environment and Planning Act
General Data Protection Directive (GDPR)
Open Government Act (Woo)
Public Records Act
European Regulations
Risk Management & Assessment
IEC 31010 Risk Assessment Techniques
ISO 31000 Risk Management Guidelines
ISO Guide 73 Risk management — Vocabulary
NIST 800-37r2 Risk Management Framework for Information Systems and Organizations
Other Assessment
Quality & Audit Standards
ENISA National Capabilities Assessment Framework
Global Internal Audit Standards
ISO/IEC 20000-1 Part 1: Service management system requirements
ISO 8601 Date and Time Formats
ISO 9000 Quality management - Vocabulary
ISO 9001 Quality management systems — Requirements
ISO 9004 Quality of an organization – Guidance to achieve sustained success
ISO 15939 Systems and software engineering — Measurement process
ISO 19011 Guidelines for auditing management systems
Sector-Specific Frameworks
GOVERNMENT - Cbw (NIS2) Control Framework
DUTO (Dutch Standards Framework for Sustainable Accessible Government Information)
GEMMA - Municipality
CORA - Housing Associations
MORA - Secondary Vocational Educational Institutions
NORA - Government
NOREA DORA In Control Framework 3.1
HORA - Higher Educational Institutions
HTZ (Horizontal Supervision) Control Framework 6.0
MARA - National Archives Institutions
PETRA - Provincial
RORA - National Government
ROSA - Educational Institutions
WILMA - Water Boards
ZiRA - Hospitals
Certifications – Group 1 (Completed in LinkedIn Learning)
Certifications – Group 2
Certifications – Group 3
AAIA
AAISM
CC
CCOA
CCSLP
CET
CGEIT
CSX-P
CDPSE
ISSAP
ISSEP
ISSMP
ITCA
P3O
PAL
PAL-EBM
PMI
PSF