the accesskey _ mod _ content

Methods, tools and rules

  • Magerit - version 3. Analytical methodology and risk management information systems

    Offers concepts relating to the analysis and treatment within a comprehensive process of risk management; concrete steps and formalizes the analysis of the risks; describes options and treatment criteria of risks and formalizes the risk management activities; tries projects of risk analysis; formalizes the activities of security plans; treats the development of information systems and how risk analysis serves to manage the safety of the final product since its initial conception until his release in production, as well as the protection of their own development process; anticipates some problems that appear when conducting recurring risk analysis. Furthermore, the methodology is accompanied by a catalogue of elements and a guide of techniques that collects different techniques type that can be useful for the implementation of the method.

  • CCN-STIC guides for the security of the systems of public administration

    Downtown National PKIX (CCN) makes available to the public administrations guides, including CCN-STIC segments, with which to improve the safety requirements demanded in the information and communications systems administration. Among these guides highlight of unique form under article 29 of the royal decree 3/2010 for the better compliance with the National security Scheme.


    El CCN-CERT es la Capacidad de Respuesta a incidentes de Seguridad de la Información del Centro Criptológico Nacional (CCN), dependiente del Centro Nacional de Inteligencia (CNI). Este servicio se creó a principios de 2007 como CERT gubernamental español y está presente en los principales foros internacionales en los que se comparte objetivos, ideas e información sobre la seguridad de forma global.