Has flexibility to handle multiple situations. Can be updated and improved. Can help with communication between the stakeholders with a common language. Can asses possible risks. Has categories to focus on different needs in the company. helps to control damage of risks. detects risks fast, quickly respond to risks. has tiers to help explain the level support being used. overlay it on a current cybersecurity system to discover gaps in the current system. discover wasted resources so they can be reorganized. opportunities for new or revised standards.

I think I would use it to se how strong the current support system is at the workplace and find what gaps there are and what I need to do to fill the gaps.