-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathassessment_ontology_final.rdf
More file actions
7116 lines (6340 loc) · 685 KB
/
assessment_ontology_final.rdf
File metadata and controls
7116 lines (6340 loc) · 685 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
<?xml version="1.0"?>
<rdf:RDF xmlns="http://www.w3.org/2002/07/owl#"
xml:base="http://www.w3.org/2002/07/owl"
xmlns:dct="http://purl.org/dc/terms/"
xmlns:owl="http://www.w3.org/2002/07/owl#"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
xmlns:xml="http://www.w3.org/XML/1998/namespace"
xmlns:xsd="http://www.w3.org/2001/XMLSchema#"
xmlns:rdfs="http://www.w3.org/2000/01/rdf-schema#"
xmlns:skos="http://www.w3.org/2004/02/skos/core#"
xmlns:assessment="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final#"
xmlns:nis2v="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final#"
xmlns:iso27001="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final#">
<owl:Ontology rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/">
<owl:imports rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/"/>
<owl:imports rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/"/>
</owl:Ontology>
<!--
///////////////////////////////////////////////////////////////////////////////////////
//
// NIS2 Assessment Ontology - Metadata
//
///////////////////////////////////////////////////////////////////////////////////////
-->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final">
<rdf:type rdf:resource="http://www.w3.org/2002/07/owl#Ontology"/>
<dct:title>Assessment Vocabulary</dct:title>
<dct:abstract>NIS2 gap analysis against ISO 27001:2022 controls framework (89 controls) and ENISA Minimum Security Measures for Operators of Essentials Services (30 controls).</dct:abstract>
<dct:description>This ontology details the questions and answers that make up the gap analysis of the ISO controls. Each question corresponds to one control and has three possible answers. These responses gauge if the control is fully implemented, partially implemented and not implemented.</dct:description>
<dct:creator>Jenni Parry</dct:creator>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-04-08</dct:created>
<dct:modified rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-24</dct:modified>
<dct:identifier rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<dct:importedFrom rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final"/>
<dct:importedFrom rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final"/>
</rdf:Description>
<!--
///////////////////////////////////////////////////////////////////////////////////////
//
// NIS2 Assessment - Questions ans Answers
//
///////////////////////////////////////////////////////////////////////////////////////
-->
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ISOControl270012022"/>
<skos:prefLabel xml:lang="en">Assessment Question</skos:prefLabel>
<skos:definition xml:lang="en">Represents the set of questions used to perform a gap analysis to assess compliance against ISO 27001:2022 controls and the NIS2 Cybersecurity Measures.</skos:definition>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-04-18</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
</rdf:Description>
<!-- *************************************** Start Questions ********************************************************* -->
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.7 -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.7">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel>Multiple Choice Question #7</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.7</skos:altLabel>
<skos:definition xml:lang="en">Are documented information and additional necessary documentation included in the organisation's information security management system according to the organisation's needs, considering factors such as its size, activities, processes, products, services, complexity of processes, interactions, and personnel competence?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-04-17</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ7AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ7AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ7AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control7.5"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2a"/>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.17 -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.17">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #17</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.17</skos:altLabel>
<skos:definition xml:lang="en">Are operating procedures for information processing facilities documented and made available to personnel who require them?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-04-18</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ17AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ17AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ17AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.5.37"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2a"/>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.26 -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.26">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #26</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.26</skos:altLabel>
<skos:definition xml:lang="en">Are the clocks of information processing systems used by the organisation synchronised to approved time sources?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-04-18</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ26AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ26AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ26AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.8.17"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2b"/>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.29 -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.29">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #29</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.29</skos:altLabel>
<skos:definition xml:lang="en">Are operating procedures for information processing facilities documented and made available to personnel who require them?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-04-18</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ29AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ29AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ29AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.5.37"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2c"/>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.30 -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.30">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #30</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.30</skos:altLabel>
<skos:definition xml:lang="en">Are information processing facilities protected from power failures and other disruptions caused by failures in supporting utilities?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-04-18</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ30AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ30AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ30AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.7.11"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2c"/>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.33 -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.33">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #33</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.33</skos:altLabel>
<skos:definition xml:lang="en">Are information processing facilities implemented with redundancy sufficient to meet availability requirements?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-04-18</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ33AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ33AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ33AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.8.14"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2c"/>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.1 -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.1">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #70.1</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.70.1</skos:altLabel>
<skos:definition xml:lang="en">Is the organisation determining the required competence of individuals performing work under its control that affects its information security performance?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-04-18</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.1AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.1AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.1AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control7.2"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2i"/>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.2 -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.2">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #70.2</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.70.2</skos:altLabel>
<skos:definition xml:lang="en">Is the organisation ensuring that these individuals possess the necessary competence through appropriate education, training, or experience?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-04-18</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.2AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.2AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.2AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control7.2"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2i"/>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.3 -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.3">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #70.3</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.70.3</skos:altLabel>
<skos:definition xml:lang="en">Is the organisation taking necessary actions, where applicable, to acquire the required competence and evaluating the effectiveness of these actions?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-04-18</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.3AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.3AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.3AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control7.2"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2i"/>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.4 -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.4">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #70.4</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.70.4</skos:altLabel>
<skos:definition xml:lang="en">Is the organisation retaining appropriate documented information as evidence of competence?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-04-18</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.4AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.4AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.4AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control7.2"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2i"/>
</rdf:Description>
<!-- ***************************************************************************************************************************** -->
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ7AnswerA -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ7AnswerA">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.7"/>
<skos:definition xml:lang="en">Documented information and necessary documentation within the organisations information security management system are not tailored to the organisation's specific needs, lacking consideration for factors such as size, activities, processes, and personnel competence.</skos:definition>
<skos:prefLabel>MCQ7. Not Implemented</skos:prefLabel>
<skos:altLabel>(i)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ7AnswerB -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ7AnswerB">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.7"/>
<skos:definition xml:lang="en">There are some efforts to include documented information and necessary documentation in the organisation's information security management system according to its needs, but it may not fully account for factors such as size, activities, processes, and personnel competence in all instances.</skos:definition>
<skos:prefLabel>MCQ7. Partially Implemented</skos:prefLabel>
<skos:altLabel>(ii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ7AnswerC -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ7AnswerC">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.7"/>
<skos:definition xml:lang="en">Documented information and necessary documentation are comprehensively included in the organisation's information security management system according to its needs, meticulously considering factors such as size, activities, processes, products, services, complexity of processes, interactions, and personnel competence, ensuring alignment with organisational requirements.</skos:definition>
<skos:prefLabel>MCQ7. Fully Implemented</skos:prefLabel>
<skos:altLabel>(iii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ17AnswerA -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ17AnswerA">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.17"/>
<skos:definition xml:lang="en">Operating procedures for information processing facilities are not documented, and there is no system in place to make them available to personnel who require them.</skos:definition>
<skos:prefLabel>MCQ17. Not Implemented</skos:prefLabel>
<skos:altLabel>(i)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ17AnswerB -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ17AnswerB">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.17"/>
<skos:definition xml:lang="en">There are some operating procedures for information processing facilities documented, but access to them may be limited or inconsistent for personnel who require them.</skos:definition>
<skos:prefLabel>MCQ17. Partially Implemented</skos:prefLabel>
<skos:altLabel>(ii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ17AnswerC -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ17AnswerC">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.17"/>
<skos:definition xml:lang="en">Operating procedures for information processing facilities are comprehensively documented and readily available to all personnel who require them, ensuring efficient and standardised operations across the organisation.</skos:definition>
<skos:prefLabel>MCQ17. Fully Implemented</skos:prefLabel>
<skos:altLabel>(iii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ26AnswerA -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ26AnswerA">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.26"/>
<skos:definition xml:lang="en">The clocks of information processing systems used by the organisation are not synchronised to approved time sources, leading to potential discrepancies in timestamps and challenges in correlation of events.</skos:definition>
<skos:prefLabel>MCQ26. Not Implemented</skos:prefLabel>
<skos:altLabel>(i)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ26AnswerB -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ26AnswerB">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.26"/>
<skos:definition xml:lang="en">There are some efforts to synchronise the clocks of information processing systems to approved time sources, but the process may be inconsistent or not fully comprehensive.</skos:definition>
<skos:prefLabel>MCQ26. Partially Implemented</skos:prefLabel>
<skos:altLabel>(ii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ26AnswerC -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ26AnswerC">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.26"/>
<skos:definition xml:lang="en">The clocks of information processing systems used by the organisation are fully synchronised to approved time sources, ensuring accurate and consistent timestamps for events across the systems.</skos:definition>
<skos:prefLabel>MCQ26. Fully Implemented</skos:prefLabel>
<skos:altLabel>(iii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ29AnswerA -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ29AnswerA">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.29"/>
<skos:definition xml:lang="en">Operating procedures for information processing facilities are not documented, and there is no system in place to make them available to personnel who require them.</skos:definition>
<skos:prefLabel>MCQ29. Not Implemented</skos:prefLabel>
<skos:altLabel>(i)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ29AnswerB -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ29AnswerB">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.29"/>
<skos:definition xml:lang="en">There are some operating procedures for information processing facilities documented, but access to them may be limited or inconsistent for personnel who require them.</skos:definition>
<skos:prefLabel>MCQ29. Partially Implemented</skos:prefLabel>
<skos:altLabel>(ii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ29AnswerC -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ29AnswerC">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.29"/>
<skos:definition xml:lang="en">Operating procedures for information processing facilities are comprehensively documented and readily available to all personnel who require them, ensuring efficient and standardised operations across the organisation.</skos:definition>
<skos:prefLabel>MCQ29. Fully Implemented</skos:prefLabel>
<skos:altLabel>(iii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ30AnswerA -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ30AnswerA">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.30"/>
<skos:definition xml:lang="en">Information processing facilities are not protected from power failures and other disruptions caused by failures in supporting utilities, leaving them vulnerable to potential downtime and data loss.</skos:definition>
<skos:prefLabel>MCQ30. Not Implemented</skos:prefLabel>
<skos:altLabel>(i)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ30AnswerB -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ30AnswerB">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.30"/>
<skos:definition xml:lang="en">There are some efforts to protect information processing facilities from power failures and other disruptions caused by failures in supporting utilities, but the protection measures may be inconsistent or incomplete.</skos:definition>
<skos:prefLabel>MCQ30. Partially Implemented</skos:prefLabel>
<skos:altLabel>(ii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ30AnswerC -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ30AnswerC">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.30"/>
<skos:definition xml:lang="en">Information processing facilities are fully protected from power failures and other disruptions caused by failures in supporting utilities, ensuring uninterrupted operation and data integrity even during utility failures.</skos:definition>
<skos:prefLabel>MCQ30. Fully Implemented</skos:prefLabel>
<skos:altLabel>(iii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ33AnswerA -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ33AnswerA">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.33"/>
<skos:definition xml:lang="en">Information processing facilities lack redundancy and are unable to meet availability requirements, posing risks of downtime and service interruptions.</skos:definition>
<skos:prefLabel>MCQ33. Not Implemented</skos:prefLabel>
<skos:altLabel>(i)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ33AnswerB -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ33AnswerB">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.33"/>
<skos:definition xml:lang="en">There are some redundancy measures implemented in information processing facilities, but they may not be sufficient to fully meet availability requirements, leading to potential disruptions in service.</skos:definition>
<skos:prefLabel>MCQ33. Partially Implemented</skos:prefLabel>
<skos:altLabel>(ii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ33AnswerC -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ33AnswerC">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.33"/>
<skos:definition xml:lang="en">Information processing facilities are implemented with redundancy measures that are sufficient to meet availability requirements, ensuring continuous operation and minimal downtime.</skos:definition>
<skos:prefLabel>MCQ33. Fully Implemented</skos:prefLabel>
<skos:altLabel>(iii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.1AnswerA -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.1AnswerA">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.1"/>
<skos:definition xml:lang="en">The organisation does not determine the required competence of individuals performing work under its control that affects its information security performance, potentially leading to gaps in skills and knowledge.</skos:definition>
<skos:prefLabel>MCQ70.1. Not Implemented</skos:prefLabel>
<skos:altLabel>(i)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.1AnswerB -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.1AnswerB">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.1"/>
<skos:definition xml:lang="en">There are some efforts to determine the required competence of individuals performing work under its control that affects its information security performance, but the process may be inconsistent or not fully comprehensive.</skos:definition>
<skos:prefLabel>MCQ70.1. Partially Implemented</skos:prefLabel>
<skos:altLabel>(ii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.1AnswerC -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.1AnswerC">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.1"/>
<skos:definition xml:lang="en">The organisation fully determines the required competence of individuals performing work under its control that affects its information security performance, ensuring that personnel possess the necessary skills and knowledge to fulfill their roles effectively.</skos:definition>
<skos:prefLabel>MCQ70.1. Fully Implemented</skos:prefLabel>
<skos:altLabel>(iii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.2AnswerA -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.2AnswerA">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.2"/>
<skos:definition xml:lang="en">The organisation is not ensuring that individuals possess the necessary competence through appropriate education, training, or experience, potentially leading to gaps in skills and knowledge.</skos:definition>
<skos:prefLabel>MCQ70.2. Not Implemented</skos:prefLabel>
<skos:altLabel>(i)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.2AnswerB -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.2AnswerB">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.2"/>
<skos:definition xml:lang="en">There are some efforts to ensure that individuals possess the necessary competence through appropriate education, training, or experience, but the process may be inconsistent or not fully comprehensive.</skos:definition>
<skos:prefLabel>MCQ70.2. Partially Implemented</skos:prefLabel>
<skos:altLabel>(ii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.2AnswerC -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.2AnswerC">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.2"/>
<skos:definition xml:lang="en">The organisation fully ensures that individuals possess the necessary competence through appropriate education, training, or experience, ensuring that personnel are adequately prepared to fulfill their roles effectively.</skos:definition>
<skos:prefLabel>MCQ70.2. Fully Implemented</skos:prefLabel>
<skos:altLabel>(iii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.3AnswerA -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.3AnswerA">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.3"/>
<skos:definition xml:lang="en">The organisation is not taking necessary actions to acquire the required competence and is not evaluating the effectiveness of these actions, potentially resulting in inadequately skilled personnel.</skos:definition>
<skos:prefLabel>MCQ70.3. Not Implemented</skos:prefLabel>
<skos:altLabel>(i)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.3AnswerB -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.3AnswerB">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.3"/>
<skos:definition xml:lang="en">There are some efforts by the organisation to acquire the required competence and evaluate the effectiveness of these actions, but the process may be inconsistent or not fully comprehensive.</skos:definition>
<skos:prefLabel>MCQ70.3. Partially Implemented</skos:prefLabel>
<skos:altLabel>(ii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.3AnswerC -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.3AnswerC">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.3"/>
<skos:definition xml:lang="en">The organisation is taking necessary actions to acquire the required competence and systematically evaluating the effectiveness of these actions, ensuring continuous improvement in the skills and knowledge of its personnel.</skos:definition>
<skos:prefLabel>MCQ70.3. Fully Implemented</skos:prefLabel>
<skos:altLabel>(iii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.4AnswerA -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.4AnswerA">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.4"/>
<skos:definition xml:lang="en">The organisation is not retaining appropriate documented information as evidence of competence, potentially leading to difficulties in verifying the skills and knowledge of its personnel.</skos:definition>
<skos:prefLabel>MCQ70.4. Not Implemented</skos:prefLabel>
<skos:altLabel>(i)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.4AnswerB -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.4AnswerB">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.4"/>
<skos:definition xml:lang="en">There are some efforts by the organisation to retain appropriate documented information as evidence of competence, but the documentation may be incomplete or not consistently maintained.</skos:definition>
<skos:prefLabel>MCQ70.4. Partially Implemented</skos:prefLabel>
<skos:altLabel>(ii)</skos:altLabel>
</rdf:Description>
<!-- https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.4AnswerC -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ70.4AnswerC">
<rdf:type rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.70.4"/>
<skos:definition xml:lang="en">The organisation is retaining appropriate documented information as evidence of competence, ensuring comprehensive records are maintained to verify the skills and knowledge of its personnel.</skos:definition>
<skos:prefLabel>MCQ70.4. Fully Implemented</skos:prefLabel>
<skos:altLabel>(iii)</skos:altLabel>
</rdf:Description>
<!-- ****************************************** -->
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.9.1">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #9.1</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.9.1</skos:altLabel>
<skos:definition xml:lang="en">Does the organisation implement the information security risk treatment plan? </skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.9.1AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.9.1AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.9.1AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control8.3"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2a"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.57.1">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #57.1</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.57.1</skos:altLabel>
<skos:definition xml:lang="en">Do personnel of the organisation and relevant interested parties receive appropriate information security awareness, education, and training?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.57.1AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.57.1AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.57.1AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.6.3"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2g"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.5.6">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #5.6</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.5.6</skos:altLabel>
<skos:definition xml:lang="en">Does the organisation retain documented information about the information security risk treatment process?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.5.6AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.5.6AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.5.6AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control6.1.3"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2a"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.91.2">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #91.2</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.91.2</skos:altLabel>
<skos:definition xml:lang="en">Are measures implemented to ensure the protection of off-site assets, safeguarding them from unauthorised access, theft, damage, or other risks that may compromise their integrity, confidentiality, or availability?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.91.2AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.91.2AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.91.2AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.7.9"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article__21.2i"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.34.3">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #34.3</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.34.3</skos:altLabel>
<skos:definition xml:lang="en">Does the organisation control planned changes and review the consequences of unintended changes, taking action to mitigate any adverse effects as necessary?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.34.3AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.34.3AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.34.3AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control8.1"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2d"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.1">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #1</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.1</skos:altLabel>
<skos:definition xml:lang="en">Does the organisation determine external and internal issues relevant to its purpose and affecting its ability to achieve the intended outcome(s) of its information security management system?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.1AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.1AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.1AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control4"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2a"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.101">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #101</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.101</skos:altLabel>
<skos:definition xml:lang="en">How does the organisation address external and internal issues that may impact its ability to achieve the intended outcome(s) of its information security management system?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.101AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.101AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.101AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control4.1"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2a"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.5.2">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #5.2</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.5.2</skos:altLabel>
<skos:definition xml:lang="en">Does the organisation determine all necessary controls to implement the chosen information security risk treatment option(s), whether by designing them as required or identifying them from any source?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.5.2AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.5.2AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.5.2AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control6.1.3"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2a"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.45">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #45</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.45</skos:altLabel>
<skos:definition xml:lang="en">Are networks and network devices secured, managed, and controlled to protect information in systems and applications?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.45AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.45AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.45AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.8.20"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2e"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.44">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #44</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.44</skos:altLabel>
<skos:definition xml:lang="en">Have procedures and measures been implemented to securely manage software installation on operational systems?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.44AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.44AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.44AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.8.19"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2e"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.123">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #123</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.123</skos:altLabel>
<skos:definition xml:lang="en">How does the organisation ensure the protection of intellectual property rights through the implementation of appropriate procedures?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.123AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.123AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.123AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.5.32"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2g"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.16">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #16</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.16</skos:altLabel>
<skos:definition xml:lang="en">Are legal, statutory, regulatory, and contractual requirements relevant to information security, along with the organisation’s approach to meeting these requirements, identified, documented, and kept up to date?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.16AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.16AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.16AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.5.31"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2a"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.39">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #39</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.39</skos:altLabel>
<skos:definition xml:lang="en">Is the organisation regularly monitoring, reviewing, evaluating, and managing change in supplier information security practices and service delivery?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.39AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.39AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.39AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.5.22"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2d"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.56.4">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #56.4</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.56.4</skos:altLabel>
<skos:definition xml:lang="en">Does the organisation determine how to communicate information relevant to the information security management system?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.56.4AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.56.4AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.56.4AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control7.4"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2g"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.106.1">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #106.1</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.106.1</skos:altLabel>
<skos:definition xml:lang="en">When planning for the information security management system, what factors should the organisation consider?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.106.1AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.106.1AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.106.1AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control6.1."/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2a"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.47">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #47</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.47</skos:altLabel>
<skos:definition xml:lang="en">Is segregation implemented for groups of information services, users, and information systems within the organisation's networks?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.47AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.47AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.47AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.8.22"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2e"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.4.6">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #4.6</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.4.6</skos:altLabel>
<skos:definition xml:lang="en">Does the organisation retain documented information about the information security risk assessment process?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.4.6AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.4.6AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.4.6AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control6.1.2"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2a"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.84">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #84</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.84</skos:altLabel>
<skos:definition xml:lang="en">Are the allocation and use of privileged access rights restricted and managed?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.84AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.84AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.84AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.8.2"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2i"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.75.1">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #75.1</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.75.1</skos:altLabel>
<skos:definition xml:lang="en">Do personnel of the organisation and relevant interested parties receive appropriate information security awareness, education, and training?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.75.1AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.75.1AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.75.1AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.6.3"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2i"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.115">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #115</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.115</skos:altLabel>
<skos:definition xml:lang="en">How does senior management ensure the ongoing suitability, adequacy, and effectiveness of the organisation's information security management system?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.115AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.115AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.115AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control9.3"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2f"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.50">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #50</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.50</skos:altLabel>
<skos:definition xml:lang="en">Is the organisation conducting internal audits at planned intervals to determine whether the information security management system conforms to both the organisation’s own requirements and the requirements outlined in this document, and whether it is effectively implemented and maintained?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.50AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.50AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.50AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control9.2"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2f"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.119">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #119</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.119</skos:altLabel>
<skos:definition xml:lang="en">How does management ensure that all personnel apply information security in accordance with established policies and procedures?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.119AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.119AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.119AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.5.4"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2f"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.42">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #42</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.42</skos:altLabel>
<skos:definition xml:lang="en">Does the organisation acquire information regarding technical vulnerabilities of the information systems in use, evaluate the organisation’s exposure to such vulnerabilities, and implement appropriate measures accordingly?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.42AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.42AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.42AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.8.8"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2e"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.80">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #80</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.80</skos:altLabel>
<skos:definition xml:lang="en">Are rules established and implemented to control physical and logical access to information and other associated assets, based on business and information security requirements?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.80AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.80AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.80AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.5.15"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2i"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.49.2">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #49.2</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.49.2</skos:altLabel>
<skos:definition xml:lang="en">Has the organisation established methods for monitoring, measurement, analysis, and evaluation to ensure valid results, and are these methods selected capable of producing comparable and reproducible results?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.49.2AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.49.2AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.49.2AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/Control9.1"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2f"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.71">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #71</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.71</skos:altLabel>
<skos:definition xml:lang="en">Are information security roles and responsibilities defined and allocated according to the organisation's needs?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.71AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.71AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.71AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.5.2"/>
<dct:subject rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/nis2v_Ontology_Final/Article_21.2i"/>
</rdf:Description>
<rdf:Description rdf:about="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.81">
<rdf:type rdf:resource="http://www.w3.org/2000/01/rdf-schema#Class"/>
<rdf:type rdf:resource="http://www.w3.org/2004/02/skos/core#Concept"/>
<rdfs:subClassOf rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<skos:prefLabel xml:lang="en">Multiple Choice Question #81</skos:prefLabel>
<skos:altLabel xml:lang="en">MCQ.81</skos:altLabel>
<skos:definition xml:lang="en">Is the organisation managing the complete life cycle of identities, encompassing activities such as identity creation, authentication, authorisation, periodic reviews, modification, and termination, ensuring comprehensive oversight and control over identity-related processes?</skos:definition>
<skos:broader rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/AssessmentQuestion"/>
<dct:created rdf:datatype="http://www.w3.org/2001/XMLSchema#date">2024-05-20</dct:created>
<dct:contributor>Jenni Parry</dct:contributor>
<rdfs:isDefinedBy rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.81AnswerA"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.81AnswerB"/>
<nis2v:hasAnswer rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/assessment_ontology_final/MCQ.81AnswerC"/>
<nis2v:relatedToControl rdf:resource="https://jenni0608.github.io/NIS2V-Vocabulary-Repository/ISO27001_ontology_final/ControlA.5.16"/>