1 / 1100%
Introduction
NISTc Cybersecurityc frameworkc wasc institutedc toc helpc dealc withc
cybersecurityc threatsc andc howc toc dealc withc suchc attacks.c cybersecurityc
frameworkc proposedc byc Nationalc Institutec ofc Standardsc andc Technologyc
(NIST)c havec itsc impactc toc thec industry.c Thesec includesc thec corec ofc thec
frameworkc whichc focusesc onc thec vulnerabilityc scansc andc detectionc ofc
maliciousc codec consideringc variousc functionsc whichc includec identity,c
protect,c andc detect,c guidelinesc onc usingc thec framework,c andc itsc advantagesc
inc variousc industryc sectorsc includingc legislation,c contractors,c andc insurance.c
(NIST,2018)
Analysis
Thec Frameworkc isc madec upc ofc threec components:c thec Frameworkc Core,c
Profiles,c andc Tiers.c Organizationsc canc usec thesec threec componentsc togetherc
toc conductc ac comprehensivec reviewc ofc theirc cybersecurityc program.c Thec
frameworkc corec representsc ac varietyc ofc cybersecurity-relatedc activitiesc andc
outcomesc thatc canc bec foundc inc ac cybersecurityc program,c suchc asc thec
performancec ofc vulnerabilityc scansc andc thec detectionc ofc maliciousc code,c thec
Profilesc whichc canc bec usedc inc conjunctionc withc thec Core,c providec ac summaryc
ofc anc organization’sc cybersecurityc programc andc canc bec usedc toc alignc anc
organization’sc cybersecurityc activitiesc (suchc asc thosec foundc withinc thec
Frameworkc Core)c withc itsc businessc requirements,c riskc tolerances,c andc
organizationalc resourcesc andc thec Tiersc whichc arec separatec fromc thec Core,c
mayc bec usedc byc organizationsc toc self-rankc theirc cybersecurityc riskc
managementc practices.c Thec attachedc filec havec thec detailsc onc thec functions.
Reference
Leic Shen.c (2014).c Thec NISTc Cybersecurityc Framework:c Overviewc andc
Potentialc Impacts.c
Journalc ofc Internetc Law
,c
18
(6),c 36.
Students also viewed