The benefits an organization can gain from the NIST Cybersecurity Framework

The main benefit of the NIST Cybersecurity Framework is that it provides guidance and protocols for cybersecurity programs. The NIST Cybersecurity Framework does not provide information on the technology itself but rather provides standards for cybersecurity specialists/programs to strive towards. This document is so useful for cybersecurity experts as they can use it to better organize cybersecurity operations. The framework lays out implementation tiers which provide companies a way to view how well they are doing in terms of cybersecurity. Another great part about the NIST Cybersecurity Framework is that it is relatively easy to understand even for individuals, not in the cybersecurity field.


How I would use it in my future workplace.

I would use the NIST Cybersecurity Framework in my future workplace by making sure the five framework core functions (Identity, Protect, Detect, Respond, and Recover) are frequently performed to minimize cybersecurity risks. Additionally, I would make sure to evaluate the current profile and set target profiles to make sure the company was safe from future attacks. I would also aim for the highest implementation tier possible for the company. I do understand that some smaller companies may not have the proper resources to fully make it to Tier 4, which is the highest tier.