Scribd
Upload
217 views1 page

Demystifying NIST Cybersecurity Framework: Identify

The document discusses the NIST Cybersecurity Framework which provides a customizable strategy for organizations to strengthen their cybersecurity. The framework consists of five functions - Identify, Protect, Detect, Respond, and Recover - which are further divided into categories and subcategories to help organizations assess risks, protect systems and data, detect threats, respond to incidents, and recover from events.

Uploaded by

Corey Molinelli
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
Download as pdf or txt
217 views1 page

Demystifying NIST Cybersecurity Framework: Identify

The document discusses the NIST Cybersecurity Framework which provides a customizable strategy for organizations to strengthen their cybersecurity. The framework consists of five functions - Identify, Protect, Detect, Respond, and Recover - which are further divided into categories and subcategories to help organizations assess risks, protect systems and data, detect threats, respond to incidents, and recover from events.

Uploaded by

Corey Molinelli
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
Download as pdf or txt
Download as pdf or txt
You are on page 1/ 1

Demystifying NIST

Cybersecurity Framework
Initially developed for critical infrastructure, the National Institute of Standards and Technology (NIST)
established a framework for improving cybersecurity, titled the NIST Cybersecurity Framework.

At the core of the framework exists five functions, which are further divided into multiple categories and
subcategories, providing a roadmap to help organizations strengthen their defense against cyberthreats. It’s
not compliance–it’s a customizable strategy that can be applied to existing security programs, or used to build
one from the ground up.

One of the most crucial steps to preventing cyberattacks is


Identify performing a risk assessment and identifying vulnerabilities.
“Develop the organizational Organizations must review their assets and gain insight on
understanding to manage how those assets might be valued by cybercriminals. By
cybersecurity risks to people, analyzing what you have and what you do, you can then identify
systems, assets, data, vulnerabilities and focus your efforts from a top-down approach
and capabilities.” that fits business needs.

Protecting an organization starts with the people of the


organization, which means implementing new-school awareness
Protect and compliance training, and developing stringent policies to
“Develop and implement the mitigate risks. Protection also includes investing in security
appropriate safeguards.” technologies (like threat detection services), and maintaining both
hardware and software components so they never fall out of
date, leaving them vulnerable to security holes.

Detecting threats in a timely manner is the difference between


suffering a massive breach and eliminating the threat before it
Detect
has a chance to do any real damage. To assist in this area, there
“Develop and implement are many software and hardware companies that offer services
the appropriate activities to like real-time network monitoring, intrusion detection, phishing
identify the occurrence of a campaigns, etc. But this also comes down to a human issue in that
cybersecurity event.” employees need to stay alert and be on the lookout for potential
attacks at all times.

© 2021 The Security Awareness Company - KnowBe4, Inc. All rights reserved.
Any cybersecurity strategy is only as good as its incident
Respond response plan. Why? Because this is always a “when, not if”
environment. Organizations need to have the proper procedures
“Develop and implement the
in place to help employees and team members quickly assess a
appropriate activities to take
potential attack, and know immediately how and where to report
action regarding a detected
said attack. Think of it as an emergency plan that establishes
cybersecurity event.”
a set of protocols—a step-by-step policy—to mitigate further
damage and increase the success of recovery.

Recover
Unfortunately, security events happen and they happen often.
“Develop and implement A strong recovery plan at least mitigates the fallout and helps to
the appropriate activities to effectively restore systems and processes in a timely manner.
maintain plans for resilience It’s also a chance to implement any lessons learned from
and to restore any capabilities the incident into awareness training, ultimately lowering the
or services that were impaired
likelihood of similar incidents in the future.
due to a cybersecurity event.”

You might also like