A Unified IoT Security Platform for Dynamic Threat-to-Control Mapping
Fatiha Djebbar, Ismaila Olatunde SogbadeCybersecurity risk management is often complicated by fragmented solutions for threat identification and detection, vulnerability assessment, and control selection across multiple frameworks. This paper presents a unified, dynamically updated, threat-based cybersecurity control platform that addresses this challenge by integrating Information Technology (IT), Operational Technology (OT), and Internet of Things (IoT) standards, including ISO/IEC 27001:2022, National Institute of Standards and Technology Cybersecurity Framework (NIST CSF) 2.0, and IEC 62443-3-3. The platform enables (1) querying a selected threat to identify associated vulnerabilities, (2) recommending applicable security controls across multiple frameworks, and (3) identifying overlapping or unique controls to avoid redundant implementation. Automated integration of Common Vulnerabilities and Exposures (CVEs) from the NIST National Vulnerability Database (NVD) links vulnerabilities to mapped threats and controls, supporting proactive risk management. A structured evaluation was conducted across 100 threat scenarios spanning IT, OT, and IoT domains, producing approximately 1000 threat–control relationships across 3 integrated frameworks. Performance evaluation demonstrates that the platform is scalable. While integrating additional frameworks, it maintains an average query latency of 0.40 s to 0.43 s, which implies an insignificant incremental latency increase of 0.03 s, while its web-based interface provides dynamic querying and visualization in a user-friendly manner for technical and non-technical users. By unifying threat, vulnerability, and control data, the platform streamlines compliance, reduces control retrieval time, and ensures traceable, consistent, and cross-framework mitigation strategies, enhancing informed cybersecurity decision making.