
Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
A concise overview of the nist cybersecurity framework (nist csf), outlining its five core functions: identify, protect, detect, respond, and recover. It briefly describes each function and its main activity categories, emphasizing the framework's role in managing cybersecurity risks and improving organizational security posture.
Typology: Exams
1 / 1
This page cannot be seen from the preview
Don't miss anything!

DETECT - ANSWER-The 3rd out of 5, this Core Function of the NIST CSF encourages companies to assess their cybersecurity processes to ensure they are robust enough to detect threats. The main activity categories include: anomalies and events, continuous monitoring, and detection processes. IDENTIFY - ANSWER-The 1st out of 5, this Core Function of the NIST CSF encourages companies to identify the assets they own that might appeal to hackers. The main activity categories include: asset management, business environment, governance, risk assessment, and risk management. NIST CSF Core Functions - ANSWER-The five concurrent and continuous Functions that serve as a foundation of the NIST CSF and include: Identify, Protect, Detect, Respond, and Recover. When considered together, these Functions provide a high- level, strategic view of the lifecycle of an organization's management of cybersecurity risk. NIST Cybersecurity Framework (NIST CSF) - ANSWER-A helpful framework aimed at reducing and better managing cybersecurity risks; for improving cybersecurity that involves five core functions. These core functions are activities performed "concurrently and continuously to form an operational culture that addresses the dynamic cybersecurity risk" (NIST, 2014, pg. 8). PROTECT - ANSWER-The 2nd out of 5, this Core Function of the NIST CSF encourages companies to assess their cybersecurity processes to ensure they are robust enough to protect company assets. The main activity categories include: access control, awareness and training, data security, information protection, maintenance, and protective technology. RECOVER - ANSWER-The 5th out of 5, this Core Function of the NIST CSF encourages companies to assess their cybersecurity processes to ensure they include a plan to repair the damage caused by a cyber attack. The main activity categories include: recovery planning, improvements, and communication. RESPOND - ANSWER-The 4th out of 5, this Core Function of the NIST CSF encourages companies to assess their cybersecurity processes to ensure they a response plan in the event of an attack. The main activity categories include: planning response, communications, analysis, mitigation, and improvements.