Industry TemplateIndustry-Specific

Critical Infrastructure

Critical-infrastructure governance starter for energy, water, transport, and manufacturing operators. It includes configurable OT/ICS disclosure rules, direct-actuation restrictions, probing detection, and human-review routing; operators remain responsible for independent safety and access controls.

This template is a configurable starting point and control mapping. It is not certification, legal advice, or a guarantee of compliance; validate it against your obligations and environment before use.

Regions

US, EU

References

7 references

Mapped Control Domains

5 mapped domains

Deployment

Fully Air-gapped, Sovereign Region

Referenced Frameworks, Standards & Obligations

NIST CSF 2.0NIST SP 800-82 Rev. 3CISA Cross-Sector Cybersecurity Performance GoalsNIS2 Directive (EU)IEC 62443NERC CIPSector-specific safety and reliability rules

Mapped Control Domains

Access Control
Incident Response
Vulnerability Management
Audit Logging
Human Oversight

Deployment profiles

Fully Air-gapped
Sovereign Region

Get started in 3 steps

1

Open the template

Open the catalog entry in the Keeptrusts console and review its included controls, references, and deployment metadata.

2

Adapt the configuration

Use the template as a starting point, then adjust relevant policies, thresholds, routing, and review settings for your requirements.

3

Validate before rollout

Test every outcome you configure—such as allow, redact, block, or operator review—before deploying through a supported gateway workflow.