Compliance Dashboard

Establish and maintain a comprehensive ICT risk management policy.

Ensure management bodies approve and oversee cybersecurity risk measures.

Report significant incidents to CSIRT within 24 hours of detection.

Provide detailed incident notification within 72 hours.

Submit a final report within one month of the incident notification.

Assess and manage cybersecurity risks in the supply chain.

Include cybersecurity requirements in supplier contracts.

Develop and test business continuity and disaster recovery plans.

Implement backup management and system restoration procedures.

Implement policies for the use of cryptography and encryption.

Implement strict access control and asset management policies.

Deploy MFA and continuous authentication solutions where appropriate.

Establish vulnerability disclosure and handling procedures.

Provide regular cybersecurity awareness training to all staff.

Implement and enforce basic cyber hygiene practices across the organization.