The NIST cybersecurity framework provides
a policy framework of computer security guidance for how organizations can assess and improve their ability to identify their cyber assets, prevent security events where possible, detect security events as they inevitably occur, respond to and cope with security events even while they are impacting system functions, and ultimately recover from such security events. Figure 8 provides a useful diagram of the framework, while the following paragraphs identify the key framework aspects.
“Develop the organizational understanding to manage cybersecurity risk to systems, assets, data, and capabilities.”
“Develop and implement the appropriate safeguards to ensure delivery of critical infrastructure services.”
“Develop and implement the appropriate activities to identify the occurrence of a cybersecurity event.”
“Develop and implement the appropriate activities to take action regarding a detected cybersecurity event.”
“Develop and implement the appropriate activities to maintain plans for resilience and to restore any capabilities or services that were impaired due to a cybersecurity event.”
The benefit of using the NIST Framework allows for an organization to have a common language and systematic methodology for managing cyber security risk. The Core includes activities to be incorporated in a cyber security program that can be tailored to meet any organization’s needs. The Framework is designed to complement, not replace, an organization’s cyber security program and risk management processes. The Framework helps guide key decision points about risk management activities through the various levels of an organization from senior executives, to business and process level, and implementation and operations as well.