NIST Framework
WHY NIST? The National Institute of Standards and Technology’s (NIST, founded in 1901) Cybersecurity Framework is the gold standard in the industry to improve critical infrastructure cybersecurity. YOU deserve the best.
This framework enables your organization to apply the principles and best practices of risk management to improve security and resilience.
Overarching goal – Reduce and better manage cybersecurity risks, improving YOUR security posture and resilience.
Framework Functions
Standards, guidelines, & practices: This process is engaged continuously to continue to learn and improve.
What processes and assets need protection?
The focus is on the business and how it relates to cybersecurity risk. This is time to review all resources at hand. Lays groundwork for cybersecurity-related actions that clients will take moving forward. Review: what is currently in the environment, risks associated with environments, how it relates in context with the business’ goals.
Allows us to understand all assets and environments, define current and desired states of controls to protect those assets, and a plan to move from current to desired state of cybersecurity.