What is the IKT-Minimalstandard derived from, and how many controls does it contain?
Derived from the NIST Cybersecurity Framework, adapted for Switzerland. Provides ~106 Massnahmen organised into 5 theme areas: Identifizieren, Schützen, Detektieren, Reagieren, Wiederherstellen.
* The five IKT-Minimalstandard themes map 1:1 to the five NIST CSF functions (v1.x, before Govern was added). *
The five Themenbereiche directly mirror the original 5 NIST CSF functions (CSF v1.x, before Govern was added):
| IKT-Minimalstandard | NIST CSF |
|---|---|
| Identifizieren | Identify |
| Schützen | Protect |
| Detektieren | Detect |
| Reagieren | Respond |
| Wiederherstellen | Recover |
Total: 106 konkrete Massnahmen for Swiss organisations to implement.
Implementation aids:
- A free Excel Assessment Tool for self-evaluation, version 1.1-2023.
- Radar-chart visualisation showing your current vs target score per area.
- Available in DE / FR / IT / EN.
Tip: Because the IKT-Minimalstandard is a 1:1 derivative of NIST CSF v1.x, you can use it as a stepping stone to international NIST CSF reporting — or vice versa, an organisation that already does NIST CSF gets the Swiss minimum standard almost for free.
Go deeper:
NIST Cybersecurity Framework (official) — the source framework whose functions the IKT-Minimalstandard mirrors.
NIST Cybersecurity Framework (Wikipedia) — the Identify/Protect/Detect/Respond/Recover functions in context.