Industry 4.0 is the connection of intelligent objects with information technology and thus with the internet. This leads to new fields of application in information technology. To protect intelligent objects security approaches are necessary. Several security standards already exist for ICT, but not for Industry 4.0. The present paper considers standards to conduct threat analysis and risk analysis of ICT security based on a literature review. A catalogue of criteria relevant to such standards for Industry 4.0 is developed which serves as the basis of their evaluation. Thirteen standards are identified as relevant regarding the criteria, among them IT-Grundschutz.