There are many benefits organizations can receive using the NIST Framework. An important benefit is that the framework is technologically neutral, meaning that it can be utilized by several types of technologies and businesses. The Framework can also be used to achieve multiple goals, whether it is monitoring cybersecurity attacks, or used as a guide in implementing a cybersecurity system. Another interesting benefit of the Framework is that it can be used as an outline to pinpoint and assess a business’ existing cybersecurity processes. Not only can the Framework help in responding to a cybersecurity breach, but it can also help in planning a response, as well as identifying methods of protecting vulnerable information. While response is a critical part of any cybersecurity attack, it is important to know how to respond, along with the ability to keep business practices going uninterrupted in the event of an attack.

I would use the NIST Framework as a guide to better protect sensitive information, as well as in developing a response plan to potential breaches. The Framework would be beneficial in stressing the importance of having such a system in place, helping to have higher levels of management involved in implementing adequate cybersecurity practices. I would also like to have a policy that prohibits the use of company equipment and networks for non-business-related matters, as it would help to lessen the chance of employees opening the business up to potential security breaches.