ARK Controls Ontology
language en

ARK Controls Ontology

Release: 2024-05-16

Modified on: 2024-05-24
This version:
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology/ontology.ttl
Latest version:
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Revision:
0.1
Contributors:
Junli Liang
Nick McDonald
Rob Brennan
Publisher:
https://openark.adaptcentre.ie
Source:
ISO 27002:2022(E), https://www2.healthservice.hse.ie/organisation/national-pppgs/hse-integrated-risk-management-policy/, https://www.cdc.gov/niosh/learning/safetyculturehc/module-3/2.html
Download serialization:
JSON-LD RDF/XML N-Triples TTL
License:
https://creativecommons.org/licenses/by/4.0/
Visualization:
Visualize with WebVowl
Cite as:
ARK Controls Ontology. Revision: 0.1. Retrieved from: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology/ontology.ttl
Vocabulary maintained at:
https://gogs.adaptcentre.ie/ARK/Ontologies/src/master/ARKControlsOntology
Provenance of this page
http://purl.org/ontology/bibo/unstable

Abstract

This ontology defines sets of Control classes and their hierachies, taken from the ISO27002 document, HSE documents, that are used on the ARK Platform. Due to copyright restrictions, no definitions are provided for ISO controls.

Introduction back to ToC

This ontology defines sets of Control classes and their hierachies, taken from the ISO27002 document, HSE documents, that are used on the ARK Platform. Due to copyright restrictions, no definitions are provided for ISO controls.

Namespace declarations

Table 1: Namespaces used in the document
arkc<https://openark.adaptcentre.ie/Ontologies/ARKCube#>
arkctl<https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#>
arkcyt<https://openark.adaptcentre.ie/Ontologies/CybersecurityTerminology#>
bibo<http://purl.org/ontology/bibo/>
dc<http://purl.org/dc/elements/1.1/>
dcat<http://www.w3.org/ns/dcat#>
dcterms<http://purl.org/dc/terms/>
owl<http://www.w3.org/2002/07/owl#>
rdf<http://www.w3.org/1999/02/22-rdf-syntax-ns#>
rdfs<http://www.w3.org/2000/01/rdf-schema#>
schema1<http://schema.org/>
skos<http://www.w3.org/2004/02/skos/core#>
sw<http://www.w3.org/2003/06/sw-vocab-status/ns#>
vocab<http://purl.org/vocab/vann/>
widoco<https://w3id.org/widoco/vocab#>
xml<http://www.w3.org/XML/1998/namespace>
xsd<http://www.w3.org/2001/XMLSchema#>
xsd1<xsd:>

ARK Controls Ontology: Overview back to ToC

This ontology has the following classes and properties.

Classes

Object Properties

Annotation Properties

Named Individuals

ARK Controls Ontology: Description back to ToC

This ontology defines sets of Control classes and their hierachies, taken from the ISO27002 document, HSE documents, that are used on the ARK Platform. Due to copyright restrictions, no definitions are provided for ISO controls.

Cross-reference for ARK Controls Ontology classes, object properties and data properties back to ToC

This section provides details for each class and property defined by ARK Controls Ontology.

Classes

Acceptable use of information and other associated assetsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#AcceptableUseOfInformationAndOtherAssociatedAssets

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Access controlc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#AccessControl

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Access rightsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#AccessRights

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Access to source codec back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#AccessToSourceCode

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Actionc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#Action

Actions are a future measure that will maintain and/or modify a risk. In the HSE, an action is a future measure to further reduce either the likelihood or impact of a risk.
Actions are a future measure that will maintain and/or modify a risk. In the HSE, an action is a future measure to further reduce either the likelihood or impact of a risk.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
https://www2.healthservice.hse.ie/organisation/national-pppgs/hse-integrated-risk-management-policy/
has super-classes
HSE ERM Control c

Action ownerc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ActionOwner

A person responsible for particular action
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has super-classes
Control owner c

Addressing information security within supplier agreementsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#AddressingInformationSecurityWithinSupplierAgreements

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Administrative Controlc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#AdministrativeControl

Administrative controls change the way work is done or give workers more information by providing workers with relevant procedures, training, or warnings. They’re often used together with higher-level controls.
Administrative controls change the way work is done or give workers more information by providing workers with relevant procedures, training, or warnings. They’re often used together with higher-level controls.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has super-classes
NIOSH Control c

Application security requirementsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ApplicationSecurityRequirements

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Assessment and decision on information security eventsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#AssessmentAndDecisionOnInformationSecurityEvents

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Detective c, Organizational control c

Authentication informationc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#AuthenticationInformation

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Cabling securityc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#CablingSecurity

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Physical control c, Preventive c

Capacity managementc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#CapacityManagement

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Detective c, Preventive c, Technological control c

Change managementc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ChangeManagement

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Classification of informationc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ClassificationOfInformation

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Clear desk and clear screenc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ClearDeskAndClearScreen

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Physical control c, Preventive c

Clock synchronizationc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ClockSynchronization

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Detective c, Technological control c

Collection of evidencec back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#CollectionOfEvidence

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Corrective c, Organizational control c

Compliance with policies, rules and standards for information securityc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ComplianceWithPoliciesRulesAndStandardsForInformationSecurity

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Confidentiality or non-disclosure agreementsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ConfidentialityOrNondisclosureAgreements

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
People control c, Preventive c

Configuration managementc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ConfigurationManagement

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Contact with authoritiesc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ContactWithAuthorities

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Corrective c, Organizational control c, Preventive c

Contact with special interest groupsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ContactWithSpecialInterestGroups

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Corrective c, Organizational control c, Preventive c

Control groupc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ControlGroup

A group that persons can share controls with each other, add metameta to describe the controls in the group, and create custom control hierachies.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has super-classes
Access Control Entity c
is in domain of
has control op, has sub control group op
is in range of
has sub control group op

Control ownerc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ControlOwner

Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has super-classes
Person c
has sub-classes
Action owner c

Corrective controlc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#CorrectiveControl

Corrective controls are designed to correct errors or undesirable events which have occurred and will prevent further occurrences.
Corrective controls are designed to correct errors or undesirable events which have occurred and will prevent further occurrences.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
https://www2.healthservice.hse.ie/organisation/national-pppgs/hse-integrated-risk-management-policy/
has super-classes
Reactive control c

Data leakage preventionc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#DataLeakagePrevention

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Detective c, Preventive c, Technological control c

Data maskingc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#DataMasking

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Detectivec back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#Detective

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
ISO Control c
has sub-classes
Assessment and decision on information security events c, Capacity management c, Clock synchronization c, Data leakage prevention c, Information security event reporting c, Logging c, Monitoring activities c, Networks security c, Outsourced development c, Physical security monitoring c, Protection against malware c, Supporting utilities c, Threat intelligence c

Detective controlc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#DetectiveControl

Detective controls are designed to search for and identify errors or undesirable events after they have occurred so that corrective actions can be taken.
Detective controls are designed to search for and identify errors or undesirable events after they have occurred so that corrective actions can be taken.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
https://www2.healthservice.hse.ie/organisation/national-pppgs/hse-integrated-risk-management-policy/
has super-classes
Reactive control c

Directive controlc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#DirectiveControl

Directive controls give direction. These can be, for example, statutory obligations, regulatory standards including professional standards, or other organisational requirements or instructions, many of which are converted into policies, procedures, circulars, standard operating procedures and training.
Directive controls give direction. These can be, for example, statutory obligations, regulatory standards including professional standards, or other organisational requirements or instructions, many of which are converted into policies, procedures, circulars, standard operating procedures and training.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
https://www2.healthservice.hse.ie/organisation/national-pppgs/hse-integrated-risk-management-policy/
has super-classes
Proactive control c

Disciplinary processc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#DisciplinaryProcess

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Corrective c, People control c, Preventive c

Documented operating proceduresc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#DocumentedOperatingProcedures

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Corrective c, Organizational control c, Preventive c

Eliminationc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#Elimination

Elimination makes sure the hazard no longer exists. Most effective method
Elimination makes sure the hazard no longer exists. Most effective method
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has super-classes
NIOSH Control c

Engineering Controlc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#EngineeringControl

Engineering controls reduce exposure by preventing hazards from coming into contact with workers. They still allow workers to do their jobs, though.
Engineering controls reduce exposure by preventing hazards from coming into contact with workers. They still allow workers to do their jobs, though.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has super-classes
NIOSH Control c

Equipment maintenancec back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#EquipmentMaintenance

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Physical control c, Preventive c

Equipment siting and protectionc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#EquipmentSitingAndProtection

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Physical control c, Preventive c

External Assurance providersc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ExternalAssuranceProviders

assurance from external independent assurance providers such as Regulators.
assurance from external independent assurance providers such as Regulators.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
https://www2.healthservice.hse.ie/organisation/national-pppgs/hse-integrated-risk-management-policy/
has super-classes
HSE ERM Control c

HSE ERM Controlc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#HseControl

Controls are measures that maintain and/or modify risk. In the HSE, a control is a measure that is in place, is working effectively and operating to reduce either the likelihood or impact of a risk.
Controls are measures that maintain and/or modify risk. In the HSE, a control is a measure that is in place, is working effectively and operating to reduce either the likelihood or impact of a risk.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
https://www2.healthservice.hse.ie/organisation/national-pppgs/hse-integrated-risk-management-policy/
has super-classes
Control c
has sub-classes
Action c, External Assurance providers c, Proactive control c, Reactive control c, Risk treatment c, Treatment plan c

ICT readiness for business continuityc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ICTReadinessForBusinessContinuity

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Corrective c, Organizational control c

Identity managementc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#IdentityManagement

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Independent review of information securityc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#IndependentReviewOfInformationSecurity

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Corrective c, Organizational control c, Preventive c

Information access restrictionc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#InformationAccessRestriction

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Information backupc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#InformationBackup

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Corrective c, Technological control c

Information deletionc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#InformationDeletion

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Information security awareness, education and trainingc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#InformationSecurityAwarenessEducationAndTraining

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
People control c, Preventive c

Information security during disruptionc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#InformationSecurityDuringDisruption

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Corrective c, Organizational control c, Preventive c

Information security event reportingc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#InformationSecurityEventReporting

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Detective c, People control c

Information security for use of cloud servicesc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#InformationSecurityForUseOfCloudServices

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Information security in project managementc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#InformationSecurityInProjectManagement

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Information security in supplier relationshipsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#InformationSecurityInSupplierRelationships

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Information security incident management planning and preparationc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#InformationSecurityIncidentManagementPlanningAndPreparation

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Information security roles and responsibilitiesc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#InformationSecurityRolesAndResponsibilities

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Information transferc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#InformationTransfer

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Installation of software on operational systemsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#InstallationOfSoftwareOnOperationalSystems

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Intellectual property rightsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#IntellectualPropertyRights

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Inventory of information and other associated assetsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#InventoryOfInformationAndOtherAssociatedAssets

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

ISO Controlc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ISOControl

An ISO control is defined as a measure that modifies or maintains risk. Some of the controls in this document are controls that modify risk, while others maintain risk. An information security policy, for example, can only maintain risk, whereas compliance with the information security policy can modify risk. Moreover, some controls describe the same generic measure in different risk contexts. This document provides a generic mixture of organizational, people, physical and technological information security controls derived from internationally recognized best practices.
An ISO control is defined as a measure that modifies or maintains risk. Some of the controls in this document are controls that modify risk, while others maintain risk. An information security policy, for example, can only maintain risk, whereas compliance with the information security policy can modify risk. Moreover, some controls describe the same generic measure in different risk contexts. This document provides a generic mixture of organizational, people, physical and technological information security controls derived from internationally recognized best practices.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Control c
has sub-classes
Corrective c, Detective c, Organizational control c, People control c, Physical control c, Preventive c, Technological control c

Labelling of informationc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#LabellingOfInformation

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Learning from information security incidentsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#LearningFromInformationSecurityIncidents

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Legal, statutory, regulatory and contractual requirementsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#LegalStatutoryRegulatoryAndContractualRequirements

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Loggingc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#Logging

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Detective c, Technological control c

Management of technical vulnerabilitiesc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ManagementOfTechnicalVulnerabilities

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Management responsibilitiesc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ManagementResponsibilities

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Managing information security in the ICT supply chainc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ManagingInformationSecurityInTheICTSupplyChain

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Monitoring activitiesc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#MonitoringActivities

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Corrective c, Detective c, Technological control c

Monitoring, review and change management of supplier servicesc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#MonitoringReviewAndChangeManagementOfSupplierServices

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Networks securityc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#NetworksSecurity

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Detective c, Preventive c, Technological control c

NIOSH Controlc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#NioshControl

Controls are measures that maintain and/or modify risk. In the NIOSH hierarchy, a control is a measure that is in place, is working effectively and operating to reduce either the likelihood or impact of a risk.
Controls are measures that maintain and/or modify risk. In the NIOSH hierarchy, a control is a measure that is in place, is working effectively and operating to reduce either the likelihood or impact of a risk.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has super-classes
Control c
has sub-classes
Administrative Control c, Elimination c, Engineering Control c, Personal protective equipment c, Substitution c

Organizational controlc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#OrganizationalControl

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
ISO Control c
has sub-classes
Acceptable use of information and other associated assets c, Access control c, Access rights c, Addressing information security within supplier agreements c, Assessment and decision on information security events c, Authentication information c, Classification of information c, Collection of evidence c, Compliance with policies, rules and standards for information security c, Contact with authorities c, Contact with special interest groups c, Documented operating procedures c, ICT readiness for business continuity c, Identity management c, Independent review of information security c, Information security during disruption c, Information security for use of cloud services c, Information security in project management c, Information security in supplier relationships c, Information security incident management planning and preparation c, Information security roles and responsibilities c, Information transfer c, Intellectual property rights c, Inventory of information and other associated assets c, Labelling of information c, Learning from information security incidents c, Legal, statutory, regulatory and contractual requirements c, Management responsibilities c, Managing information security in the ICT supply chain c, Monitoring, review and change management of supplier services c, Policies for information security c, Privacy and protection of PII c, Protection of records c, Response to information security incidents c, Return of assets c, Segregation of duties c, Threat intelligence c

Outsourced developmentc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#OutsourcedDevelopment

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Detective c, Preventive c, Technological control c

People controlc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#PeopleControl

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
ISO Control c
has sub-classes
Confidentiality or non-disclosure agreements c, Disciplinary process c, Information security awareness, education and training c, Information security event reporting c, Remote working c, Responsibilities after termination or change of employment c, Screening c, Terms and conditions of employment c

Personal protective equipmentc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#PersonalProtectiveEquipment

Personal protective equipment (PPE) includes clothing and devices to protect workers. PPE needs constant effort and attention (including proper use and training) from workers. Higher-level controls aren’t always feasible, and PPE might be needed in conjunction with other control measures. Least effective contols.
Personal protective equipment (PPE) includes clothing and devices to protect workers. PPE needs constant effort and attention (including proper use and training) from workers. Higher-level controls aren’t always feasible, and PPE might be needed in conjunction with other control measures. Least effective contols.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has super-classes
NIOSH Control c

Physical entryc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#PhysicalEntry

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Physical control c, Preventive c

Physical security monitoringc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#PhysicalSecurityMonitoring

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Detective c, Physical control c, Preventive c

Physical security perimetersc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#PhysicalSecurityPerimeters

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has super-classes
Physical control c, Preventive c

Policies for information securityc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#PoliciesForInformationSecurity

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Preventative controlc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#PreventativeControl

Preventative controls are controls designed to stop, discourage, pre-empt or limit the possibility of an undesirable event before it occurs.
Preventative controls are controls designed to stop, discourage, pre-empt or limit the possibility of an undesirable event before it occurs.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
https://www2.healthservice.hse.ie/organisation/national-pppgs/hse-integrated-risk-management-policy/
has super-classes
Proactive control c

Preventivec back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#Preventive

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
ISO Control c
has sub-classes
Acceptable use of information and other associated assets c, Access control c, Access rights c, Access to source code c, Addressing information security within supplier agreements c, Application security requirements c, Authentication information c, Cabling security c, Capacity management c, Change management c, Classification of information c, Clear desk and clear screen c, Compliance with policies, rules and standards for information security c, Confidentiality or non-disclosure agreements c, Configuration management c, Contact with authorities c, Contact with special interest groups c, Data leakage prevention c, Data masking c, Disciplinary process c, Documented operating procedures c, Equipment maintenance c, Equipment siting and protection c, Identity management c, Independent review of information security c, Information access restriction c, Information deletion c, Information security awareness, education and training c, Information security during disruption c, Information security for use of cloud services c, Information security in project management c, Information security in supplier relationships c, Information security incident management planning and preparation c, Information security roles and responsibilities c, Information transfer c, Installation of software on operational systems c, Intellectual property rights c, Inventory of information and other associated assets c, Labelling of information c, Learning from information security incidents c, Legal, statutory, regulatory and contractual requirements c, Management of technical vulnerabilities c, Management responsibilities c, Managing information security in the ICT supply chain c, Monitoring, review and change management of supplier services c, Networks security c, Outsourced development c, Physical entry c, Physical security monitoring c, Physical security perimeters c, Policies for information security c, Privacy and protection of PII c, Privileged access rights c, Protecting against physical and environmental threats c, Protection against malware c, Protection of information systems during audit testing c, Protection of records c, Redundancy of information processing facilities c, Remote working c, Responsibilities after termination or change of employment c, Return of assets c, Screening c, Secure authentication c, Secure coding c, Secure development life cycle c, Secure disposal or re-use of equipment c, Secure system architecture and engineering principles c, Securing offices, rooms and facilities c, Security of assets off-premises c, Security of network services c, Security testing in development and acceptance c, Segregation of duties c, Segregation of networks c, Separation of development, test and production environments c, Storage media c, Supporting utilities c, Terms and conditions of employment c, Test information c, Threat intelligence c, Use of cryptography c, Use of privileged utility programs c, User endpoint devices c, Web filtering c, Working in secure areas c

Privacy and protection of PIIc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#PrivacyAndProtectionOfPII

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Privileged access rightsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#PrivilegedAccessRights

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Proactive controlc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ProactiveControl

Proactive controls are put in place before the risk materialises
Proactive controls are put in place before the risk materialises
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
https://www2.healthservice.hse.ie/organisation/national-pppgs/hse-integrated-risk-management-policy/
has super-classes
HSE ERM Control c
has sub-classes
Directive control c, Preventative control c

Protecting against physical and environmental threatsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ProtectingAgainstPhysicalAndEnvironmentalThreats

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Physical control c, Preventive c

Protection against malwarec back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ProtectionAgainstMalware

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Corrective c, Detective c, Preventive c, Technological control c

Protection of information systems during audit testingc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ProtectionOfInformationSystemsDuringAuditTesting

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Protection of recordsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ProtectionOfRecords

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Reactive controlc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ReactiveControl

Reactive controlsfocus on what happens after the risk occurs or which identify weaknesses in our current controls
Reactive controlsfocus on what happens after the risk occurs or which identify weaknesses in our current controls
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
https://www2.healthservice.hse.ie/organisation/national-pppgs/hse-integrated-risk-management-policy/
has super-classes
HSE ERM Control c
has sub-classes
Corrective control c, Detective control c

Redundancy of information processing facilitiesc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#RedundancyOfInformationProcessingFacilities

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Remote workingc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#RemoteWorking

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
People control c, Preventive c

Response to information security incidentsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ResponseToInformationSecurityIncidents

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Corrective c, Organizational control c

Responsibilities after termination or change of employmentc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ResponsibilitiesAfterTerminationOrChangeOfEmployment

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
People control c, Preventive c

Return of assetsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ReturnOfAssets

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Risk treatmentc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#RiskTreatment

Risk treatment is the process to modify risk.
Risk treatment is the process to modify risk.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
https://www2.healthservice.hse.ie/organisation/national-pppgs/hse-integrated-risk-management-policy/
has super-classes
HSE ERM Control c

Screeningc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#Screening

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
People control c, Preventive c

Secure authenticationc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#SecureAuthentication

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Secure codingc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#SecureCoding

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Secure development life cyclec back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#SecureDevelopmentLifeCycle

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Secure disposal or re-use of equipmentc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#SecureDisposalOrReuseOfEquipment

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Physical control c, Preventive c

Secure system architecture and engineering principlesc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#SecureSystemArchitectureAndEngineeringPrinciples

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Securing offices, rooms and facilitiesc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#SecuringOfficesRoomsAndFacilities

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Physical control c, Preventive c

Security of assets off-premisesc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#SecurityOfAssetsOffpremises

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Physical control c, Preventive c

Security of network servicesc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#SecurityOfNetworkServices

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Security testing in development and acceptancec back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#SecurityTestingInDevelopmentAndAcceptance

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Segregation of dutiesc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#SegregationOfDuties

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Organizational control c, Preventive c

Segregation of networksc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#SegregationOfNetworks

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Separation of development, test and production environmentsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#SeparationOfDevelopmentTestAndProductionEnvironments

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Statusc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#Status

A class that indicates an action's status
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
is in range of
has status op
has members
Completed ni, Open ni

Storage mediac back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#StorageMedia

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Physical control c, Preventive c

Substitutionc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#Subsitution

Substitution means changing out a material or process to reduce the hazard.
Substitution means changing out a material or process to reduce the hazard.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has super-classes
NIOSH Control c

Supporting utilitiesc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#SupportingUtilities

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Detective c, Physical control c, Preventive c

Terms and conditions of employmentc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#TermsAndConditionsOfEmployment

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
People control c, Preventive c

Test informationc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#TestInformation

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Threat intelligencec back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#ThreatIntelligence

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Corrective c, Detective c, Organizational control c, Preventive c

Treatment planc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#TreatmentPlan

treatment plans detail both action and effective control plans, to minimise the likelihood and impact of the identified risk.
treatment plans detail both action and effective control plans, to minimise the likelihood and impact of the identified risk.
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
https://www2.healthservice.hse.ie/organisation/national-pppgs/hse-integrated-risk-management-policy/
has super-classes
HSE ERM Control c

Use of cryptographyc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#UseOfCryptography

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Use of privileged utility programsc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#UseOfPrivilegedUtilityPrograms

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

User endpoint devicesc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#UserEndpointDevices

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Web filteringc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#WebFiltering

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Preventive c, Technological control c

Working in secure areasc back to ToC or Class ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#WorkingInSecureAreas

See ISO27002:2022(E)
See ISO27002:2022(E)
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
Source
ISO/IEC 27002:2022(E)
has super-classes
Physical control c, Preventive c

Object Properties

has action ownerop back to ToC or Object Property ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#hasActionOwner

Links a https://openark.adaptcentre.ie/Ontologies/ARKCube#Person to an action
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has super-properties
has Control Owner op
has domain
Control c
has range
Person c

has action updateop back to ToC or Object Property ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#hasActionUpdate

has domain
Action c
has range
xsd:string c
is also defined as
data property

has controlop back to ToC or Object Property ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#hasControl

Links a control to a contorl group
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has domain
Control group c
has range
Control c

has control ownerop back to ToC or Object Property ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#hasControlOwner

Links a https://openark.adaptcentre.ie/Ontologies/ARKCube#Person to a control
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has super-properties
assigned Person op
has domain
Control c
has range
Person c

has statusop back to ToC or Object Property ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#hasStatus

Links a status to an action
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has domain
Action c
has range
Status c

has sub control groupop back to ToC or Object Property ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#hasSubControlGroup

Link to create contorl group hierarchy
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has domain
Control group c
has range
Control group c

has target riskop back to ToC or Object Property ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#hasTargetRisk

Links an action to a risk
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
has domain
Action c
has range
Risk c

Annotation Properties

abstractap back to ToC or Annotation Property ToC

IRI: http://purl.org/dc/terms/abstract

access Rightsap back to ToC or Annotation Property ToC

IRI: http://purl.org/dc/terms/accessRights

access U R Lap back to ToC or Annotation Property ToC

IRI: http://www.w3.org/ns/dcat#accessURL

byte Sizeap back to ToC or Annotation Property ToC

IRI: http://www.w3.org/ns/dcat#byteSize

code Repositoryap back to ToC or Annotation Property ToC

IRI: http://schema.org/codeRepository

contributorap back to ToC or Annotation Property ToC

IRI: http://purl.org/dc/terms/contributor

createdap back to ToC or Annotation Property ToC

IRI: http://purl.org/dc/terms/created

creatorap back to ToC or Annotation Property ToC

IRI: http://purl.org/dc/terms/creator

definitionap back to ToC or Annotation Property ToC

IRI: http://www.w3.org/2004/02/skos/core#definition

descriptionap back to ToC or Annotation Property ToC

IRI: http://purl.org/dc/terms/description

download U R Lap back to ToC or Annotation Property ToC

IRI: http://www.w3.org/ns/dcat#downloadURL

formatap back to ToC or Annotation Property ToC

IRI: http://purl.org/dc/terms/format

has Related Conceptap back to ToC or Annotation Property ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKCube#hasRelatedConcept

introductionap back to ToC or Annotation Property ToC

IRI: https://w3id.org/widoco/vocab#introduction

licenseap back to ToC or Annotation Property ToC

IRI: http://purl.org/dc/terms/license

licenseap back to ToC or Annotation Property ToC

IRI: http://schema.org/license

modifiedap back to ToC or Annotation Property ToC

IRI: http://purl.org/dc/terms/modified

pref Labelap back to ToC or Annotation Property ToC

IRI: http://www.w3.org/2004/02/skos/core#prefLabel

preferred Namespace Prefixap back to ToC or Annotation Property ToC

IRI: http://purl.org/vocab/vann/preferredNamespacePrefix

preferred Namespace Uriap back to ToC or Annotation Property ToC

IRI: http://purl.org/vocab/vann/preferredNamespaceUri

publisherap back to ToC or Annotation Property ToC

IRI: http://purl.org/dc/terms/publisher

rdfxml Serializationap back to ToC or Annotation Property ToC

IRI: https://w3id.org/widoco/vocab#rdfxmlSerialization

relatedap back to ToC or Annotation Property ToC

IRI: http://www.w3.org/2004/02/skos/core#related

rightsap back to ToC or Annotation Property ToC

IRI: http://purl.org/dc/terms/rights

sourceap back to ToC or Annotation Property ToC

IRI: http://purl.org/dc/terms/source

statusap back to ToC or Annotation Property ToC

IRI: http://purl.org/ontology/bibo/status

statusap back to ToC or Annotation Property ToC

IRI: http://www.w3.org/2003/06/sw-vocab-status/ns#status

titleap back to ToC or Annotation Property ToC

IRI: http://purl.org/dc/elements/1.1/title

Named Individuals

:ni back to ToC or Named Individual ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#

belongs to
Dataset c

Completedni back to ToC or Named Individual ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#completed

The status of an action is Completed
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
belongs to
Status c
has facts
contributor ap "Junli Liang"
contributor ap "Rob Brennan"
created ap "2024-06-05"^^date

Openni back to ToC or Named Individual ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#open

The status of an action is Open
Is defined by
https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#
belongs to
Status c
has facts
contributor ap "Junli Liang"
contributor ap "Rob Brennan"
created ap "2024-06-05"^^date

©2024 ARKni back to ToC or Named Individual ToC

IRI: https://openark.adaptcentre.ie/Ontologies/ARKControlsOntology#RightsStatement

belongs to
Rights Statement c

Legend back to ToC

c: Classes
op: Object Properties
ni: Named Individuals

References back to ToC

Add your references here. It is recommended to have them as a list.

Acknowledgments back to ToC

The authors would like to thank Silvio Peroni for developing LODE, a Live OWL Documentation Environment, which is used for representing the Cross Referencing Section of this document and Daniel Garijo for developing Widoco, the program used to create the template used in this documentation.