PAS 555 supplies a holistic framework for effective cybersecurity which not only considers the technical aspects, but also the related physical, cultural, and behavioural aspects of an organization’s approach to addressing cyber threats, including effective leadership and governance.
PAS 555 applies to the whole organization and its supply chain, avoiding the dangers that can arise when the security measures fail to cover the whole of the business. It is an adaptable approach which can apply to any organization, whatever its size or type, whether commercial, not-for-profit or public sector.
PAS 555’s flexibility allows an organization to utilise its own defined processes or the adoption of other standards and management systems to achieve its intended cybersecurity ends. PAS 555 can be used alone, but is also compatible with many major security standards, such as ISO 20000-1, ISO 27001, ISO 22301 and ISO 31000.