Apr 4, 2025 12:30:07 PM

New and Upcoming Authority Documents March/April 2025

See the list below for Authority Documents we published to our library in March/April 2025. Name AD...

Amanda B.

See the list below for Authority Documents we published to our library in March/April 2025.

Name	AD ID
GUERNSEY FINANCIAL SERVICES COMMISSION CYBER SECURITY RULES, 2021	4057
Pipeline Security Guidelines, March 2018 (with Change 1 (April 2021))	4054
Cybersecurity Maturity Model Certification (CMMC) Assessment Guide, Level 1, Version 2.13	4059
ISO/IEC 42001:2023, Information technology — Artificial intelligence — Management system, First Edition	4062
NIST SP 800-171A Rev. 3 Assessing Security Requirements for Controlled Unclassified Information	4056
Directive 2014/65/EU of the European Parliament and of the Council of 15 May 2014 on markets in financial instruments and amending Directive 2002/92/EC and Directive 2011/61/EU (recast)	4046
NIST SP 800-172A, Assessing Enhanced Security Requirements for Controlled Unclassified Information	4058
Cybersecurity Maturity Model Certification (CMMC) Assessment Guide, Level 3, Version 2.13	4061
NIST SP 800-83 Rev 1, Guide to Malware Incident Prevention and Handling for Desktops and Laptops	4065
Cybersecurity Maturity Model Certification (CMMC) Assessment Guide, Level 2, Version 2.13	4060

Check out the upcoming Authority Documents here.

Name	AD ID
ISO 13485:2016, Medical devices — Quality management systems — Requirements for regulatory purposes, Third edition	4063
ISO 37001:2025, Anti-bribery management systems — Requirements with guidance for use, Second edition	4064
NEI 08-09 [Rev. 7], Cyber Security Plan for Nuclear Power Reactors	4067
MPA Content Security Best Practices, v5.3	4069
Information Security Assessment, v6.0.3	4070
NIST SP 800-82r3, Guide to Operational Technology (OT) Security with Operational Technology Overlay, High Impact Baseline	4073
NIST SP 800-82r3, Guide to Operational Technology (OT) Security with Operational Technology Overlay, Moderate Impact Baseline	4072
NIST SP 800-82r3, Guide to Operational Technology (OT) Security with Operational Technology Overlay, Low Impact Baseline	4071
MPA Content Security Best Practices, v5.3	4069
Self-Assessment Questionnaire A-EP and Attestation of Compliance For use with PCI DSS Version 4.0.1	4081
Self-Assessment Questionnaire C and Attestation of Compliance For use with PCI DSS Version 4.0.1	4084
Self-Assessment Questionnaire C-VT and Attestation of Compliance For use with PCI DSS Version 4.0.1	4085
Self-Assessment Questionnaire D for Merchants and Attestation of Compliance For use with PCI DSS Version 4.0.1	4086
Self-Assessment Questionnaire D for Service Providers and Attestation of Compliance For use with PCI DSS Version 4.0.1, Revision 2	4087
Self-Assessment Questionnaire P2PE and Attestation of Compliance For use with PCI DSS Version 4.0.1	4088
REGULATION (EU) 2024/2847 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 23 October 2024 on horizontal cybersecurity requirements for products with digital elements and amending Regulations (EU) No 168/2013 and (EU) No 2019/1020 and Directive (EU) 2020/1828 (Cyber Resilience Act)	4090