Question
The NIST Cybersecurity Framework aligns with the prevention of unexpected business interruptions by providing a structured approach to managing cybersecurity risks. It is organized around five core functions: Identify, Protect, Detect, Respond, and Recover. The 'Identify' and 'Protect' functions are particularly relevant to preventing disruptions. 'Identify' involves understanding the business context, the resources that support critical functions, and the related cybersecurity risks. This helps businesses to prioritize their efforts. 'Protect' involves implementing appropriate safeguards to ensure delivery of critical services. This can help prevent cybersecurity incidents that could cause business interruptions. The other functions help in quickly detecting, responding to, and recovering from incidents if they occur, thereby minimizing downtime.
This question was asked on:
One way to organize this information is by categorizing performance based on the six pillars of NIST. for example, this dashboard shows the "Identify" and "Protect" pillars and breaks down each subtask into "performed", "incompletely performed", and "not performed". Alternatively, a dashboard of gauge charts can track NIST compliance areas over time. On a more granular level and for team members with more technical roles, uptime/downtime monitoring allows any anomalies to be detected promptly before they lead to graver consequences.
Receive new free presentations every Monday to your inbox.
Full content, complete versions — No credit card required.
