Glossary
Key terms of the modern IT system
Clear definitions of the concepts that structure today's IT system mapping, regulatory compliance and cybersecurity.
-
NIS2
NIS2 (EU Directive 2022/2555) is the new European directive on cybersecurity for essential and important entities. It imposes governance, risk-management and incident-notification obligations on around 160 000 organisations across the EU.
-
CMDB
A CMDB (Configuration Management Database) is a centralised database that lists an organisation's IT assets and their relationships. It is at the heart of IT mapping and ITSM governance.
-
ReCyF
ReCyF (Référentiel Cybersécurité France) is the framework published by ANSSI that structures the cybersecurity requirements applicable to essential and important entities under NIS2. It breaks down about twenty concrete objectives, audited against a maturity scale.
-
IT system mapping
IT system mapping is the structured representation of the application components, data flows and infrastructures of an organisation. It has become a prerequisite for NIS2 compliance and cyber risk management.