Beyond improving risk management in cybersecurity, this framework allows for companies to measure and assign their risks to then get better at reducing them. Organizations are able to become more rational and effective after self-assessing. This structure can be used throughout many industries, however for my future workplace in cybersecurity this could be used by implementing the framework in addition to the process already in place. More specifically, the framework would provide a concise way to ensure the company is achieving its goals in terms of protecting, responding, and recovering from threats.