Links
Website in Dutch
URLs checked February 14, 2024
Favorite VPN client:
NordVPN
Favorite browsers:
Firefox
and
Tor Browser
Favorite search engines, with respect for privacy:
DuckDuckGo
and
Startpage
Information security portals
Security.nl: Dutch information security news portal
Veilig internetten: Dutch security information on safe use of internet
VPN gids: More Dutch security information on safe use of internet
Educause: Computer and network security for higher education community
Organizations
The Hague University of Applied Sciences / Research group Cyber Security & Safety (THUAS/CSS)
World Wide Web Consortium (W3C)
Internet Engineering Task Force (IETF)
Internet Corporation for Assigned Names and Numbers (ICANN)
Internet Assigned Numbers Authority (IANA)
Center for Internet Security (CIS)
Nationaal Cyber Security Centrum (NCSC)
Forum of Incident Response and Security Teams (FIRST)
National Institute of Standards and Technology (NIST)
SANS Institute (SysAdmin, Audit, Network, Security)
European Network and Information Security Agency (ENISA)
Center for Education and Research in Information Assurance and Security (CERIAS)
Information Security Forum (ISF)
The business Continuity Institute (BCI)
Dutch Association of Information Security Professionals (PvIB)
Electronic Frontier Foundation (EFF)
Dutch privacy authority "Autoriteit Persoonsgegevens"
Information Systems Audit and Control Association (ISACA)
Dutch organization of IT auditors (NOREA)
Institute of Internal Auditors (IAA)
Chartered Institute of Information Security (CIISec)
Standards and frameworks
ISO standards
ISO/IEC 27000 standard: Information security vocabulary
ISO/IEC 27001 standard: Requirements for Information Security Management Systems
ISO/IEC 27002 standard: Information security controls
Dutch NEN standards
,
about information security
NIST publications about computer security
NIST Cybersecurity Framework (CSF)
NIST SP 800-53 standard: Cybersecurity and privacy controls
IEEE Standards Association
Common Criteria (for Information Technology Security Evaluation), ISO/IEC 15408
OSA (Open Security Architecture)
SABSA (Sherwood Applied Business Security Architecture)
COBIT (Control Objectives for Information and Related Technology)
Three Pillar Model of Information Security Maturity
Legislation
Dutch laws (basiswettenbestand)
AVG and other Dutch privacy legislation (privacywetgeving)
Data leak reporting duty (meldplicht datalekken)
US Sarbanes Oxley Act
US Patriot Act
Strategies
ENISA national cybersecurity strategy good practice guide
Overview of national cybersecurity strategies in Europe
Dutch cybersecurity strategy
US cybersecurity strategy
UK cybersecurity strategy
Risk management and risk assessment
BSI Standard 200-3
(based on
IT-Grundschutz
)
SEI standard OCTAVE Allegro
SEI Handbook for Computer Security Incident Response Teams
Information Security Forum tools
UK Business Continuity Management Toolkit
Human factor
Paper by Caluwé on change management and colors
Short paper on Belbin team roles
,
Official Belbin page
The Hague University: Cyber security for young people in primary and secondary education
Awareness videos Dutch:
Amazing mind reader reveals his 'gift'
,
Elke app heeft een prijs
,
See how easily freaks can take over your life
Cybersecurity competences
PvIB white paper on standardized job profiles for cybersecurity education
,
Dutch version
Case study on standardization of cybersecurity education
shows the usefulness of the PvIB job profiles and the failure of the e-CF framework
NIST National Initiative for Cybersecurity Education (NICE) Framework, SP800-181 Rev.1
The Cyber Security Body Of Knowledge (CyBOK), version 1.1, of the University of Bristol
The EU has unsuccessfully tried to develop a competence framework:
European e-Competence Framework for IT professionals (e-CF)
and
European Cybersecurity Skills Framework (ECSF)
. Unfortunately, both frameworks failed
Threats and countermeasures
General
ENISA's threat landscape 2022
NCSC's Dutch threat landscape (Cybersecuritybeeld Nederland)
Kaspersky real-time cyberattack map
The risks digest, moderated by Peter Neumann
CSIS's list of significant cyberincidents
Wikipedia's list of cyberattacks
CBS Cybersecuritymonitor 2022, Cybersecurityincidenten
Cyberincidents in the Netherlands
Rathenau's view on cyberthreats and the need for increased resilience ("Een nooit gelopen race")
Cryptography
Standards for cryptographic key length
Comparison of disk encryption software
Malware
Kaspersky information on malware
Anti-spam information
Spamklacht.nl: OPTA's anti-spam site
Legislation on (anti)spam
Hacking
The Metasploit project for penetration testing and exploit research
Privacy respecting search engines
Startpage
DuckDuckGo
Encryption and shredder software
VeraCrypt: disk encryption software
DiskCryptor: disk encryption software
DiskWipe: portable partition wipe software