What is the “Advanced Cybersecurity Risk Assessment Checklist” (ACRAC)?
ACRAC allows any organisation to assess a status quo of their cybersecurity.
It’s a thorough, and constantly updated checklist to reduce common cyber threats organisations are confronted with.
Its goal is to raise awareness for vulnerabilities, thereby neutralising a majority of threat vectors an organisation sees itself confronted with, and making cyber security risks manageable.
Once the checklist is completed, the results can be converted to action items to reduce the risks of cyber incidents to an organisation, and to mitigate common vulnerabilities.
Contribute to ACRAC?
The project is open source and anyone is encouraged to contribute ideas to the project. Until a platform is found, please join us and share ideas on our Discord Server: https://discord.gg/ZRJtEEP
ACRAC Advanced Cybersecurity Risk Assessment Checklist by Lars G. A. Hilse is licensed under a Creative Commons Attribution 4.0 International License.
Download the latest ACRAC as PDF
Download the latest ACRAC as XLSX
Need older or more specialised versions? Join the server mentioned above and ask us.
In 2018 I was asked to brief the European Parliament about the risks of cyberterrorism. In talks after the public hearing there was a desire for a checklist of sorts. One that would allow an organisation to at least assess a status of where they are from a cybersecurity perspective.
What ensued was a painstaking search for something out there… yet there was nothing that wasn’t a sales pitch by some company.
All publicly available information was then merged into, and spiced up into ACRAC, the Advanced Cybersecurity Risk Assessment Checklist.