Publicaciones Publications

This guide addresses the interpretation of the Esquema Nacional de Seguridad (ENS) in operational technology (OT) environments without altering regulations or introducing operational risks. It translates the ENS objectives into the physical and industrial reality, separating “what” the framework requires from “how” it is executed. It prioritizes availability and process integrity, validating the use of compensatory and organizational controls specific to the plant. […]

This document analyzes the Industrial Cybersecurity Maturity Model and its digital platform MACIN, developed by the Industrial Cybersecurity Center (CCI) in its 2026 edition. The model is specifically designed for OT environments and aligned with C2M2 v2.1, structuring itself into 10 domains, 45 objectives, and 175 practices evaluated through five maturity levels and four dimensions: processes, technology, people, and results.

This document contains the SCR2 cyber resilience framework from the Center for Industrial Cybersecurity, designed to govern distributed third-party risk across the industrial supply chain. Through three structured pillars, the model proposes technical, operational, and verifiable capabilities for the supply chain aimed at transforming provider relationships into a strategic alliance for joint resilience. Its core […]

This document analyzes the success story of Project Hammurabi at Grupo Central Lechera Asturiana, using the NIS2 Directive as a driver to transform its industrial cybersecurity into a model of strategic maturity and governance. Through a structure that emulates the historical legal code, the author José Luis Vega Pardo details the transition from a system of scattered controls to a robust Master Plan that integrates IT and OT environments. […]