The NICE framework is used by employers to develop their cybersecurity policy. I think that the
most important category of the NICE framework is protection and defense. I think that this is the
first line of defense for the network of the company. Making sure that the bad stuff does not get
in the network makes it easier to defend against attacks, this also includes a little bit of making
sure that employees know what to look out for. The defense part of this framework is after the
malware is also investigating cyber security events on the network and what to do so that it will
not happen again. The next important thing is design and development which is honestly a big
picture thing for the company. It involves pen testing and researching newer technologies in the
cyber security world if it works for the company. The third thing is investigation , this is on the
national side of things but with national investigation a company can see the types of malware
and threat attacks that can happen on a national scale. By knowing the type of attacks and how to
fix the issue a company will be able to be on the lookout. The fourth framework is
implementation and operation that includes maintenance and configuring. By making sure the
people have the right roles and then making sure that the employees are about to access the
application on the network which is very important to companies. The fifth framework is
cyberspace intelligence is important because it researches foreign actors and how they will affect
domestic technology. The sixth important framework is cyberspace effects which supports
cyberspace capabilities to defend force projection. Which means creating operation plans on how
to target cyber criminals or attacks. The seventh framework is oversight and governance. It is
important because in order for cybersecurity to work for a company it needs to be managed
effectively.