Switzerland ICT Minimum Standard Copilot

The ICT Minimum Standard (IKT-Mindeststandard) is a Swiss federal framework for improving ICT resilience, structured around the five NIST CSF functions and 106 activities across 23 categories. Published under the National Economic Supply Act (NESA, SR 531) and now maintained by the National Cyber Security Centre (NCSC / BACS), it is a recommendation by default, with mandatory status arising only through sectoral regulation such as the Electricity Supply Ordinance (StromVV, SR 734.71, Art. 5a).

The Copilot helps you understand the standard's structure across Sections 1–3, interpret specific NIST CSF category requirements (for example, ID.AM asset management or PR.AC access management), and identify how your sector's legal obligations connect to the underlying framework activities.

Section 3.2 of the 2023 edition uses the four NIST CSF implementation tiers: Tier 1 (partial), Tier 2 (risk informed), Tier 3 (repeatable), and Tier 4 (adaptive). These tiers characterise an organisation's overall rigour and integration of cybersecurity practices, and are assessed using the Excel-based self-assessment tool published by the NCSC alongside the standard.