Discussion Board: The NIST Cybersecurity Framework

Organizations can benefit using the NIST Cybersecurity Framework in countless ways. The beauty of the NIST Cybersecurity Framework is that it is designed to be interactive and adaptive into the unique environment of the organization using the framework as a guideline or enhancement to the security measures that they already have in place. What is focused on within the framework is left up to the individual organization, and different areas of the framework can be emphasized to cater to the specific problem, threat or cybersecurity concern that organization or company is anticipating or dealing with. Benefits could be used across the spectrum of very small organizations to large entities. The framework can be changed as technology changes, and best practices could be updated. It is cost effective because the framework is free, easy to understand and implement regardless of what is already in place or even used to create one if there is not one in place. I could see myself using the NIST Cybersecurity Framework as a guideline for me to brainstorm what areas are in need for further investigation, and a process of evaluation so that those needs can be met and addressed by a framework of problem solving. I would use these five high-level functions: Identify, Protect, Detect, Respond, and Recover, as a flexible and buildable basis to evaluate what areas need more attention or improvement at my future workplace.

Leave a Reply

Your email address will not be published. Required fields are marked *