NIST (CSF)

Question 1

Used to develop an organizational understanding to manage cybersecurity risk to systems, people, assets, data, and capabilities.

Answer 1

Identify (ID)

Question 1

Used by organizations to develop and implement safeguards to ensure delivery of critical services.

Answer 1

Protect (PR)

Question 2

Used by an organization to develop and implement appropriate activities identify the occurrence of a cybersecurity event.

Answer 2

Detect (DE)

Question 3

Used by an organization to develop and implement appropriate activities to take action regarding a detected cybersecurity incident.

Answer 3

Respond (RS)

Question 4

Develops and implements appropriate activities to maintain plans for resilience and to restore any capabilities or services that were impairs due to a cybersecurity incident.

Answer 4

Recover (RC)

Question 5

Five Functions of Core

Answer 5

Identify
Protect
Detect
Respond
Recover

Question 6

The identification of data, personnel, devices, systems, and facilities that enable the organization to achieve business purposes.

Answer 6

Asset Management (ID.AM)

Question 7

Focused on the understanding and prioritization of the organization’s mission, objectives, stakeholders, and activities.

Answer 7

Business Environment (ID.BE)

Question 8

The policies, procedures, and processes used to manage and monitor the organization’s regulatory, legal, risk, environmental, and operational requirements.

Answer 8

Governance (ID.GV)

Question 9

Ensure that the organization understands the cybersecurity risk to its organizational operations, organizational assets, and individuals.

Answer 9

Risk Assessment (ID.RA)

Question 10

Establishing and implementing the processes to identify, assess and manage supply chain risks within modern enterprises and organizations.

Answer 10

Supply Chain Risk Management (ID.SC)

Question 11

Used to establish the organization’s priorities, constraints risk tolerances, and assumptions in order to support operational risk decisions.

Answer 11

Risk Management Strategy (ID.RM)

Question 12

Focused on the access to physical and logical assets and associated facilities.

Answer 12

Identity Management Authentication and Access Control. (PR.AC)

Question 13

Focuses in the organization’s personnel and partners being provided with cybersecurity awareness education to perform cybersecurity duties and responsibilities.

Answer 13

Awareness and Training (PR.AT)

Question 14

Ensure that security policies, processes, and procedures are maintained and used to mange protection of information systems and assets.

Answer 14

Information Protection Processes and Procedures (PR.IP)

Question 15

Refers to the consistent management of information and records with organization’s risk strategy to protect the confidentiality, integrity, and availability of the data.

Answer 15

Data Security (PR.DS)

Question 16

Ensures that maintenance and repairs of industrial control and information system components are performed consistent with policies and procedures.

Answer 16

Maintenance (PR.MA)

Question 17

Manages technical security solutions to ensure the security and resilience of systems and assets is consistent with related policies, procedures, and agreements.

Answer 17

Protective Technology (PR.PT)

Question 18

Ensure that anomalous activity is detected and the potential impact of events is understood.

Answer 18

Anomalies and Events (DE.AE)

Question 19

Ensure that the information system and assets are continually monitored to identify cybersecurity events and verify the effectiveness of protective measures.

Answer 19

Security Continuous Monitoring (DE.CM)

Question 20

Maintained and tested to ensure that processes and procedures create awareness of anomalous events.

Answer 20

Detection Processes (DE. DP)

Question 21

Executes and maintains response processes and procedures to ensure appropriate responses to detected cybersecurity incidents.

Answer 21

Response Planning (RS.RP)

Question 22

Ensure that all response activities are coordinated with internal and external stakeholders.

Answer 22

Communication (RS.CO)

Question 23

Ensure proper analysis is conducted to ensure effective response and support recovery activities.

Answer 23

Analysis (RS.AN)

Question 24

Ensure that activities are performed to prevent expansion of an event, mitigate its effects, and resolve the incident.

Answer 24

Mitigation (RS.MI)

Question 25

Ensure that the organization’s response activities are continually getting better by incorporating lessons learned from current and previous detection and response activities.

Answer 25

Improvements (RS.IM)

Question 26

Executes and maintains the recovery processes and procedures to ensure restoration of systems or assets affected by cybersecurity incidents.

Answer 26

Recovery Planning (RC.RP)

Question 27

Ensure that the organization’s recovery planning and processes are continually getting better by incorporating lessons learned into future activities.

Answer 27

Improvements (RC.IM)

Question 28

Ensure that all restoration activities are coordinated with internal and external parties.

Answer 28

Communications (RC.CO)

Question 29

Countermeasures that organizations implement to detect, prevent, reduce, or counteract security risks to their systems and networks.

Answer 29

Controls

Question 30

____________ Framework is completely voluntary for companies and organizations to use.

Answer 30

NIST Cybersecurity Framework

Question 31

How many:
Outcomes?
Activities?
Functions?

Answer 31

108 Outcomes
23 Activities
5 Functions