TheArtOfService
Back to Frameworks

ANSSI Cybersecurity Framework

Self-Assess
France
v2023
16 domains
23 controls

French National Cybersecurity Agency framework

Verified

Framework summaries on this platform are AI-assisted interpretations for educational and compliance planning purposes. They do not reproduce or replace the official standards. Refer to the authoritative source for the definitive text. Framework names and trademarks belong to their respective organisations.

Framework Domains (16)

Audit

1 controls
Controls in the Audit domain of ANSSI Cybersecurity Framework1 controls
CodeTitle
ANSSI-PASSIPASSI Qualified Audit Providers

Cloud Security

1 controls
Controls in the Cloud Security domain of ANSSI Cybersecurity Framework1 controls
CodeTitle
ANSSI-SECNUMCLOUDSecNumCloud Qualification

Critical Infrastructure

2 controls
Controls in the Critical Infrastructure domain of ANSSI Cybersecurity Framework2 controls
CodeTitle
ANSSI-LPM-OIVLPM OIV Obligations
ANSSI-NIS2-OSENIS2 OSE Obligations (France Transposition)

Cryptography

1 controls
Controls in the Cryptography domain of ANSSI Cybersecurity Framework1 controls
CodeTitle
ANSSI-CRYPTOCryptography Recommendations

Cyber Hygiene

5 controls
Controls in the Cyber Hygiene domain of ANSSI Cybersecurity Framework5 controls
CodeTitle
ANSSI-HYGIENE-01Information Systems Inventory
ANSSI-HYGIENE-02User Authentication
ANSSI-HYGIENE-03Workstation Security
ANSSI-HYGIENE-04Network Segmentation
ANSSI-HYGIENE-05Remote Access Security

Detection

2 controls
Controls in the Detection domain of ANSSI Cybersecurity Framework2 controls
CodeTitle
ANSSI-HYGIENE-07Logging and Monitoring
ANSSI-PDISPDIS Security Incident Detection Providers

Governance

1 controls
Controls in the Governance domain of ANSSI Cybersecurity Framework1 controls
CodeTitle
ANSSI-HOMOLOGSecurity Homologation Decision

Identity

1 controls
Controls in the Identity domain of ANSSI Cybersecurity Framework1 controls
CodeTitle
ANSSI-PVIDPVID Identity Verification Providers

People

1 controls
Controls in the People domain of ANSSI Cybersecurity Framework1 controls
CodeTitle
ANSSI-HYGIENE-10Awareness and Training

Privileged Access

1 controls
Controls in the Privileged Access domain of ANSSI Cybersecurity Framework1 controls
CodeTitle
ANSSI-HYGIENE-06Administration Workstations

Public Sector

1 controls
Controls in the Public Sector domain of ANSSI Cybersecurity Framework1 controls
CodeTitle
ANSSI-RGSRGS Security General Reference

Resilience

1 controls
Controls in the Resilience domain of ANSSI Cybersecurity Framework1 controls
CodeTitle
ANSSI-HYGIENE-08Backup and Recovery

Response

2 controls
Controls in the Response domain of ANSSI Cybersecurity Framework2 controls
CodeTitle
ANSSI-HYGIENE-09Incident Response Capability
ANSSI-PRISPRIS Incident Response Providers

Risk Management

1 controls
Controls in the Risk Management domain of ANSSI Cybersecurity Framework1 controls
CodeTitle
ANSSI-EBIOS-RMEBIOS Risk Manager Method

Third Party

1 controls
Controls in the Third Party domain of ANSSI Cybersecurity Framework1 controls
CodeTitle
ANSSI-SUPPLY-CHAINSupply Chain Security

Trust Services

1 controls
Controls in the Trust Services domain of ANSSI Cybersecurity Framework1 controls
CodeTitle
ANSSI-EIDAS-QTSeIDAS Qualified Trust Services

Your Compliance Coverage

If you comply with ANSSI Cybersecurity Framework, you already cover:

NIST SP 800-53 Rev 5

61%

14 controls mapped

Compare →

ISO 20000-1

4%

1 controls mapped

Compare →

ISO 19011

4%

1 controls mapped

Compare →

+ 5 more: ISO 15189:2022 - Medical Laboratories Requirements for Quality and Competence (4%), ISO 13485 (4%)

See all 8 mapped frameworks ↓

Maps to 8 other frameworks

23 total controls
NIST SP 800-53 Rev 5
14 source controls mapped|14 target controls covered
61%
ISO 20000-1
1 source controls mapped|1 target controls covered
4%
ISO 19011
1 source controls mapped|1 target controls covered
4%
ISO 15189:2022 - Medical Laboratories Requirements for Quality and Competence
1 source controls mapped|1 target controls covered
4%
ISO 13485
1 source controls mapped|1 target controls covered
4%
SWIFT CSCF v2024
1 source controls mapped|1 target controls covered
4%
ISO 13485:2016
1 source controls mapped|1 target controls covered
4%
ISO 9001:2015
1 source controls mapped|1 target controls covered
4%
Compare ANSSI Cybersecurity Framework with NIST SP 800-53 Rev 5

Frequently Asked Questions

What is ANSSI Cybersecurity Framework?

ANSSI Cybersecurity Framework is a compliance framework from France with 16 domains and 23 controls. French National Cybersecurity Agency framework It is used by organisations to establish and maintain compliance with industry standards and regulatory requirements.

How many controls does ANSSI Cybersecurity Framework have?

ANSSI Cybersecurity Framework has 23 controls organised across 16 domains. The largest domains are Cyber Hygiene (5 controls), Critical Infrastructure (2 controls), Detection (2 controls). Each control defines specific requirements that organisations must implement to achieve compliance.

What frameworks does ANSSI Cybersecurity Framework map to?

ANSSI Cybersecurity Framework maps to 8 other compliance frameworks. The top mapping partners are NIST SP 800-53 Rev 5 (61% coverage), ISO 20000-1 (4% coverage), ISO 19011 (4% coverage). Use our comparison tool to explore control-level mappings between frameworks.

How do I get started with ANSSI Cybersecurity Framework compliance?

Start your ANSSI Cybersecurity Framework compliance journey by running a self-assessment on our platform to identify your current compliance posture. Our AI advisory can answer specific questions about ANSSI Cybersecurity Framework requirements, and cross-framework mapping helps you leverage existing controls from other frameworks you may already comply with. Create a free account to access all 23 controls and track your progress.

Start Your Compliance Journey

Create a free account to run self-assessments, get AI advisory, and track your compliance progress across 700 frameworks.

Get Started Free →

Free forever — no credit card required