Skip to content
🚨 6clicks receives ISO 42001 certification for its AI Management System 🚨

Resources

Curated content for the cyber, risk and compliance professional: We cover the latest on cybersecurity, frameworks, risk, and compliance trends.

Show filters
All
Answers
Framework comparisons
Events
Glossary
Guides
Analyst research
eBooks
Datasheets
Pitch decks

Glossary

Topics
All ISO 27001 Right Fit For Risk (RFFR) PCI-DSS NIST Cybersecurity Framework (CSF) Information Security Management System (ISMS) ASD Essential 8 FedRAMP Defence Industry Security Program (DISP) Enterprise Risk Management Regulatory Compliance Australian Financial Services Compliance Vulnerability Management Cybersecurity Compliance SOC 2 NIST SP 800-53 ISO 27000 NIST SP 800-171 HITRUST Common Security Framework Center for Internet Security (CIS) Framework MITRE ATT&CK ENISA National Capabilities Assessment Framework UK Cyber Essentials GDPR GRC Software Information Security Registered Assessors Program (IRAP) Vendor Risk Management APRA CPS 234 Cybersecurity Risk Management Environmental, Social, and Governance (ESG) CMMC ISO 27017 Federated GRC Responsible AI Artificial Intelligence Critical Infrastructure Managed Services Software: Streamlining Cyber GRC Processes Security Clearance Threat Intelligence Trusted Information Security Assessment Exchange (TISAX) Digital Operational Resilience Act (DORA) Cyber Resilience
ISO 27000
ISO/IEC /IEC 27000

ISO/IEC 27000 is a family of international standards developed by the International Organization for...

ISO/IEC Directives Part 2

ISO/IEC Directives Part 2 is a set of rules and procedures developed by the International Organizati...

ISO/IEC Internal Audit

ISO/IEC Internal Audit is a systematic and independent assessment of an organization's quality manag...

ISO 27001
ISO/IEC 27001 Audit

An ISO/IEC 27001 Audit is a type of audit that evaluates an organization’s Information Security Mana...

ISO 27001
ISO/IEC 27001 Controls

ISO/IEC 27001 Controls is a set of security controls and best practices established by the Internati...

ISO/IEC Directives Part 1

ISO/IEC Directives Part 1 is an international standard that provides guidelines for the development,...

ISO/IEC Directives

ISO/IEC Directives are a set of standards and guidelines issued by the International Organization fo...

ISO/IEC Certification Meaning

ISO/IEC certification is a formal recognition that a product, process or service meets a set of stan...

ISO 27001
ISO/IEC 27001 Activities

ISO/IEC 27001 Activities are the processes, procedures, and controls that organizations use to prote...

Information Security Management System (ISMS)
ISO/IEC Information Security

ISO/IEC Information Security is a set of international standards designed to protect information fro...

ISO/IEC Data Security Standard

ISO/IEC Data Security Standard (ISO/IEC 27001) is an information security standard published by the ...

ISO/IEC Cloud Security Standard

ISO/IEC Cloud Security Standard is an international standard developed by the International Organiza...

ISO/IEC Rules

ISO/IEC Rules are a set of international standards for the development, implementation, and maintena...

ISO/IEC Standards List

ISO/IEC Standards List is an international standard-setting body composed of representatives from va...

ISO/IEC Certifications

ISO/IEC certifications are a set of international standards for quality assurance and assurance of c...

ISO/IEC Accreditation

ISO/IEC accreditation is an internationally recognized standard for the evaluation of organizations ...

ISO/IEC Compliance

ISO/IEC compliance is the adherence to international standards and guidelines set forth by the Inter...

ISO/IEC Standard

ISO/IEC Standard is an international standard created by the International Organization for Standard...

ISO/IEC

ISO/IEC is an international standardization organization that develops and publishes standards for a...

ISO/IEC /IEC 27005

ISO/IEC 27005 is an international standard for information security risk management. It provides a f...

ISO/IEC /IEC 27004

ISO/IEC 27004 is an international standard developed by the International Organization for Standardi...

ISO 27001
ISO/IEC 27001 Certified

ISO/IEC 27001 Certified is an internationally recognized certification that demonstrates an organiza...

Likelihood

Likelihood is the probability of an event occurring, based on past events and/or current conditions....

Enterprise Risk Management
Risk

Risk is the potential for loss or harm that can be caused by making a decision or taking an action. ...

Enterprise Risk Management
Risk Identification

Risk identification is the process of recognizing and assessing the potential risks associated with ...

Enterprise Risk Management
Risk Management Framework

Risk Management Framework is a set of processes, policies, and tools used to identify, assess, monit...

Enterprise Risk Management
Risk Management Policy

A Risk Management Policy is a document that outlines steps and procedures to be taken by an organiza...

Enterprise Risk Management
Risk Management Process

Risk Management Process is a systematic approach to identifying, analyzing, and responding to risks ...

Enterprise Risk Management
Risk Owner

Risk Owner is an individual or organization responsible for the identification, assessment, and mana...

Enterprise Risk Management
Risk Profile

Risk Profile is a term used to describe an individual's or organization's risk tolerance, which is t...