A Bird's Eye View of the NIST Cybersecurity Framework

The National Institute of Standards and Technology (NIST) worked, in collaboration with private industry and government stakeholders, to develop a comprehensive IT security framework.  The NIST Cybersecurity Framework (CSF) includes best practices, methodologies and guidelines for:

  • Asset Management

  • Risk Assessment

  • Access control

  • Data and Systems Protection

  • Threat Detection

  • Data and Systems Recovery

The framework has been mapped to numerous other control frameworks and has been
prioritized to promote ease of implementation.  In addition, great attention was spent on
supporting flexibility and repeatable processes.  The combined approach supports more
efficient and effective implementation and supports continued use of existing frameworks.

cybersecurity framework graphic.jpg

Security Assessment Crosswalk