I think that not only is the NIST framework a benefit to any company, but an absolute necessity. Establishing the framework into an organization creates a united plan, or guideline, to follow in order to meet cybersecurity needs across the board. In this day and age where everything is run with technology, having no or a weak cybersecurity plan sets an organization up for a cyber attack of any sort. Having the guidelines and safeguards in writing and implemented helps to prevent and negate the effects of a potential attack. Having the framework already in place also creates a foundation upon which it can be expanded as vulnerabilities are found, as well as grow as new technology and practices come around.

I would use the NIST framework for almost every aspect of work in a future cybersecurity position. Walking into a new job without a plan or understanding of what you’ll be doing is equivalent to jumping into the ocean without knowing how to swim. I would expand upon and personalize each of the five aspects of the framework core to my specific job, and use the aspects in order to fulfill my duties and fulfill the CIA triad.