NIST-CSF Fundamentals Flashcards

1
Q

What are the Framework Tiers?

A

Tier 1: Partial
Tier 2: Risk Informed
Tier 3: Repeatable
Tier 4: Adaptive

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the Framework Functions?

A
Identify
Protect
Detect
Respond
Recover
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What categories form the Identify function?

A
Asset Management (ID.AM)
Business Environment (ID.BE)
Governance (ID.GV)
Risk Assessment (ID.RA)
Risk Management (ID.RM)
Supply Chain (ID.SP)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What categories form the Protect function?

A
Access Control (PR.AC)
Awareness and Training (PR.AT)
Data Security (PR.DS)
Information Protection Procedures (PR.IP)
Maintenance (PR.MA)
Protective Technology (PR.PT)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What categories form the Detect function?

A

Anomalies and Events (DE.AE)
Security Continuous Monitoring (DE.CM)
Detection Processes (DE.DP)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What categories form the Respond function?

A
Response Planning (RS.RP)
Communications (RS.CO)
Analysis (RS.AN)
Mitigation (RS.MI)
Improvements (RS.IM)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What categories form the Recover function?

A

Recovery Planning (RC.RP)
Improvements (RC.IM)
Communications (RC.CO)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are the framework components?

A

Framework Core - Functions, Categories, Sub-categories
Framework Tiers - Partial, Risk Informed, Repeatable, Adaptive
Framework Profile - Current Profile, Improvement Opportunity, Target Profile

How well did you know this?
1
Not at all
2
3
4
5
Perfectly