Skip to content Skip to footer

The evolution of regulatory assessments: Building cyber and operational resilience

Published by: WithSecure

Regulatory assessments such as CBEST, TBEST, TIBER, iCAST, and CORIE, are more than just tick box exercises to remain compliant. By assessing organizations in realistic, threat-intelligence-led attack simulations, they present an opportunity to build defensive capability and minimize the disruption to core business services from a cyber attack. Regulatory frameworks currently apply to financial institutions, telecoms providers, governmental bodies, and the civil nuclear sector. It is expected that yet more critical industries will adopt them. This guide is designed to help such organizations maximize the value they gain from regulatory assessment by: Showing how they can use the output of regulatory assessment to drive improvements in defensive capability and cyber resilience. Explaining the activities they may undertake to build defensive capability before and after a regulator-led assessment. Demonstrating how regulators themselves apply lessons learned from assessments to develop their testing frameworks in line with evolving attacker techniques and motivations. Predicting how regulatory assessments will continue to evolve in the future to drive further cyber resilience in critical industries

Read More

By submitting this form you agree to WithSecure contacting you with marketing-related emails or by telephone. You may unsubscribe at any time. WithSecure web sites and communications are subject to their Privacy Notice.

By requesting this resource you agree to our terms of use. All data is protected by our Privacy Notice. If you have any further questions please email

digital route logo
Lang: ENG
Type: Whitepaper Length: 10 pages

More resources from WithSecure