The purpose of frameworks, organizations use frameworks as a starting point to develop plans that mitigates risks, threats and vulnerabilities to sensitive data and assets.

NIST Cybersecurity framework is a voluntary framework that consists of standards, guidelines and best practices to manage cybersecurity risk. The CSF consist of five important core functions: IDENTIFY, PROTECT, DETECT, RESPOND and RECOVER.

Identify: The management of cybersecurity risk and effect on an organization’s people and assets

Protect: The strategy used to protect and organization through the implementation of procedures, training and tools that help mitigate cybersecurity threats

Detect: Identifying potential security incidents and improving monitoring capabilities to increase the speed and efficiency of detentions.

Respond: Making sure that the proper procedures are used to contain, neutralize and analyze security incidents and implement improvements and security process.

Recover: The process of returning affected systems back to normal operation.