Every year, ENISA provides a comprehensive report on threats, including trends and best practices to counter them. One sentence perfectly encapsulates what modern security is:
There should be no gap between physical security and cybersecurity. Ensure that physical access to devices is restricted and authenticated.
ENISA was one of the first authorities to recognize physical security as a top ten threat to information systems and to define and work on robust and secure standards, along with shared Certifications.
This 131-page document is a very useful resource for starting your journey in security, offering a clear and comprehensive comparison between two standards that will be widely discussed in the coming years: ISO 27001:2022 and the NIST Cybersecurity Framework.
