AN OVERVIEW OF THE NIST CYBER SECURITY FRAMEWORK
February 13, 2019 | (3:00 PM)
USA (United States of America)
The cyber security profession has successfully established explicit guidance for practitioners to implement effective security programs via the NIST Cyber Security Framework (CSF). The CSF provides both a roadmap and a measuring stick for effective cyber security. Despite being utilized almost exclusively for cyber security risk, the CSF can address a more holistic view of security and security risk. In the context of Enterprise Security Risk Management (ESRM), application of the CSF to security risk is even more effective because both the approach and the framework view security risk holistically. Among other benefits, this can align physical and cyber security professionals on a common roadmap using a common language - an early step in the move towards managing security risk holistically.