Publicaciones Publications

Ver todas las publicaciones
Back to publications list

Solicitar documento

Para descargar este documento debe ser miembro con acceso a entregables. Si ya es miembro, puede descargarlo desde nuestra plataforma NGLibrary.

NGLibrary

Document request

If you are interested in this document, you can ask for it at info@cci-es.org or register freely in our platform as a member able to access to deliveries.

Become a member

Pocket Guide – Questions to Ask Your Industrial Technology and Service Providers About Their Cybersecurity Capabilities

CCI-5 Guides and good practices, Publications

This document, titled “Pocket Guide: Questions to Ask Your Industrial Technology and Service Providers About Their Cybersecurity Capabilities,” developed by the Industrial Cybersecurity Center (CCI), provides a structured set of questions designed to help organizations assess the level of maturity and commitment to cybersecurity among their industrial suppliers.

The guide is divided into three sections:

  • Common questions, applicable to any industrial provider, focusing on aspects such as knowledge of the OT environment, risk management, operational resilience, staff competencies, and incident response capabilities.

  • Specific questions for industrial technology providers, aimed at technological robustness, integration with OT security systems, and secure product design.

  • Specific questions for service providers, focused on secure remote access management, maintenance, security testing, and operational continuity.

Overall, the document seeks to promote a common language between clients and suppliers, aligned with frameworks such as IEC 62443 and NIS2, to strengthen resilience and trust within connected industrial ecosystems.

Access the document through the Knowledge Platform or NGLibrary.

Available free of charge for all CCI Members.

Not yet a member of the Industrial Cybersecurity Center?

Register here.

You can purchase this document on our NGLibrary
Spanish
22/10/2025

Title

CCI-1 Strategies and regulations, CCI-3 Situation studies, CCI-8 Compliance, Publications

Industrial CRA Position Paper (Multisectoral)

24/11/2025

The new Industrial CRA Position Paper from the Industrial Cybersecurity Center highlights a critical need: adapting the European Cyber Resilience Regulation to the reality of OT environments. Critical infrastructures, legacy systems, decades-long life cycles, and the absolute priority of availability make it impossible to apply the CRA as currently designed. The document proposes a multisectoral […]

CCI-5 Guides and good practices, Publications

Industrial Cyber Intelligence Guide 2025

08/09/2025

CCI-5 Guides and good practices, Publications

10 Best IT Security Practices Adapted to the OT Environment

18/03/2025

This pocket guide will help you enhance security in industrial environments (OT) without compromising system stability or availability. By adapting IT best practices, it provides strategies for access control, network segmentation, data encryption, and secure device management, minimizing risks while ensuring operational continuity.

CCI-5 Guides and good practices, Publications

Pocket Guide – NIS2 for the Governing Body

11/06/2024

CCI launches this guide with the objective of making the Management Body of an industrial organization aware of the key aspects of the NIS2 in a concise and practical way for its implementation.

...