The Cybersecurity Framework Version 1.1

NIST.CSWP Core -

The Core is not a checklist of actions to perform. It presents key cybersecurity outcomes identified by stakeholders as helpful in managing cybersecurity risk.

Desired cybersecurity outcomes organized in a hierarchy and aligned to more detailed guidance and controls.

Functions:

Identify – Develop an organizational understanding to manage cybersecurity risk to systems, people, assets, data, and capabilities.

Protect – Develop and implement appropriate safeguards to ensure the delivery of critical services.

Detect – Develop and implement appropriate activities to identify the occurrence of a cybersecurity event.

Respond – Develop and implement appropriate activities to take action regarding a detected cybersecurity incident.

Recover – Develop and implement appropriate activities to maintain plans for resilience and to restore any capabilities or services that were impaired due to a cybersecurity incident.