NIST Cybersecurity Framework
The NIST Cybersecurity Framework is a set of guidelines for mitigating organisational cybersecurity risks produced by the US National Institute of Standards and Technology (NIST). There are 5 core functions which are subdivided into 23 categories and 108 subcategories.
Develop the organizational understanding to manage cybersecurity risk to systems, assets, data, and capabilities.
Develop and implement the appropriate safeguards to ensure delivery of critical infrastructure services.
Develop and implement the appropriate activities to identify the occurrence of a cybersecurity event.
Develop and implement the appropriate activities to take action regarding a detected cybersecurity incident.
Develop and implement the appropriate activities to maintain plans for resilience and to restore any capabilities or services that were impaired due to a cybersecurity incident.
NIST Cybersecurity Framework Categories
Identify
Protect
Detect
Respond
Recover
Identify
Protect
Detect
Respond
Recover