Methodology for Sectoral Cybersecurity Assessments

Back to all publications

Publication date:September 13, 2021

The methodology for sectoral cybersecurity assessments described in this document (called SCSA Methodology) addresses objectives in the context of ICT security for sectoral multi-stakeholder systems and drafting sectoral cybersecurity certification schemes. Applying the SCSA Methodology will generate sound information about the sectoral ICT system and relationships between the stakeholders involved, providing transparency concerning ICT-related risks and the potential to optimize the implementation of ICT security for the sectoral ICT system. It also enables full support for the European Cybersecurity Act’s requirements concerning the risk-based identification of security and assurance requirements.