23 May 2025

From your readings of pages 1 – 21 of the NIST Cybersecurity Framework, what benefit can organizations gain from using this framework, and how would you use it at your future workplace?

Benefit

The framework allows organizations to implement the functions into already used programs. The intentions of the framework are not to take over what is already in place for risk management but improve it. The framework aims to provide a significant amount of risk management for an organization, preventing potential cybersecurity issues. This is through identification, assessment, and the management of cybersecurity risks. Organization would decide on the tier that is needed, and each tier provides a certain level of risk management. This protection also involves the supply chain risk management, ensuring that the products and services are not malicious or counterfeit. Finally, the organization will develop safer privacy. An organization will contain personal information and collect data related to that personal information. If the cybersecurity risk management is not strong enough, then the organization risks the chance of personal information being leaked. The framework provides the stronger ability to protect that information and continuously monitor for potential risks.

Use

Having this knowledge can bring ideas to future positions to increase cybersecurity risk management. Technology is always being improved. Therefore, the level of protection is always going to need improvement.