NIST Flashcards

1
Q

NIST Cybersecurity Framework

A

Develop a program to identify assess, and manage cybersecurity risks in a cost effective and repeatable manner
A voluntary framework that includes three primary components to manage cybersecurity risk:
1. Framework core
2. Framework implementations
3. Framework profile

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Framework Core

A

The framework core consists of 5 areas of focus, or functions, which represent different points in the security risk management life cycle that help enhance cybersecurity protection

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Implementation tiers

A

Tiers act as a benchmark, identifying the degree to which information security practices are integrated throughout an organization.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Framework profiles

A

Determine the success or failure of information security implementation, whereas, the implementation tiers inform an organization as to the effectiveness of those profiles

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

NIST Privacy Framework

A

Framework to protect individuals data as used in data processing applications. Developed to be industry agnostic and to account for cultural and individual constructs around privacy.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

NIST SP 800-53

A

A stricter standard designed for protecting information systems against sophisticated threats.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly