The Critical Procedures and Infrastructures Area provides a set of skills aimed at supporting, as trusted third party, Institutions, central Public Administration and Critical Infrastructures in the management of critical processes, mainly in the ICT and TLC security areas. The applied methodology is known as corporate governance.

In this general framework, are included all processes that involve a number of different players, as, for instance, in the field of national critical infrastructure protection and, more in detail, in the processes of identifying an managing their interdependencies.

In this context, the FUB plays the role of trusted third party, granted by his Statute.

The corporate governance methodology is based on the correct implementation of laws, standards and best practices universally recognized as useful, such as:

• COSO (Committee of Sponsoring Organizations of the Treadway Commission);
• COBIT (Control Objectives for Information and related Technology);
• ITIL (Information Technology Infrastructure Library);
• ISO2700x (The ISO 27000 series of standards have been specifically reserved by ISO for information security matters);
• NIST (National Institute of Standards and Technology);
• Privacy.

To better accomplish his tasks, the Area operates in strict coordination with major national and international Institutions, such as the European Commission.