CSA /ANSI T200:22

Evaluation of software development and cybersecurity programs

CSA Group, 04/26/2022

Publisher: CSA

File Format: PDF

$115.00$230.00


Published:26/04/2022

Pages:146

File Size:1 file , 2.9 MB

Note:This product is unavailable in Russia, Ukraine, Belarus

Preface 

This is the first edition of CSA/ANSI T200, Evaluation of software development and cybersecurity programs . This Standard was prepared by the Subcommittee on Cybersecurity Verification, under the jurisdiction of the Technical Committee on Operational Security and the Strategic Steering Committee on Information and Communication Technology, and has been formally approved by the Technical Committee. This Standard has been developed in compliance with Standards Council of Canada requirements for National Standards of Canada. It has been published as a National Standard of Canada by CSA Group. This Standard has been approved by the American National Standards Institute (ANSI) as an American National Standard. 

Scope 

1.1 This Standard describes a methodology for assessing the product software and cybersecurity control maturity of an organization. This Standard provides the evaluators and vendors a method to determine the control maturity of the organization and products/solutions being developed regardless of solution vertical. It covers the entire product system life cycle from conception to full commissioning and until the end of life. It supports effective executive business decisions that establish a comprehensive maturity model approach to cybersecurity. 

1.2 This Standard is applicable to all IoT and related products/solutions. 

1.3 In this Standard, "shall" is used to express a requirement, i.e., a provision that the user is obliged to satisfy in order to comply with the Standard; "should" is used to express a recommendation or that which is advised but not required; and "may" is used to express an option or that which is permissible within the limits of the Standard. Notes accompanying clauses do not include requirements or alternative requirements; the purpose of a note accompanying a clause is to separate from the text explanatory or informative material. Notes to tables and figures are considered part of the table or figure and may be written as requirements. Annexes are designated normative (mandatory) or informative (non-mandatory) to define their intended application.

More CSA standard pdf

CSA W218:23

CSA W218:23

Specifications for natural asset inventories

$25.00 $50.00

CSA Z21.89:23/CSA 1.18:23

CSA Z21.89:23/CSA 1.18:23

Outdoor cooking specialty gas appliances

$323.00 $646.00

CSA C865.1:23

CSA C865.1:23

Light-emitting diode drivers — Methods of measurement (Binational standard with NEMA ANSI C82.16-2023)

$135.00 $270.00

CSA C22.2 NO. 80601-2-13:23

CSA C22.2 NO. 80601-2-13:23

Medical electrical equipment — Part 2-13: Particular requirements for basic safety and essential performance of an anaesthetic workstation (Adopted ISO 80601-2-13:2022, second edition, 2022-04, with Canadian deviations)

$158.00 $316.00