At the
center of stakes, we have number of risks, activities that matter most and
should be prioritized.
In effect, the FAIR Institute, and the National Institutes
of Standards and Technology (NIST) have
published a new resource that will help enterprises and government
organizations improve their cybersecurity risk analysis, reporting and
decision-making.
One can observe that, the combined
use of both NIST CSF and FAIR standards can allow organizations to not only
assess the maturity level of cybersecurity activities, but also to
answer fundamental questions such as: How much risk do we have?
and What activities matter the most and should be prioritized?
The Guidance that
Incorporates Framework section is
available through the FAIR Institute (http://www.fairinstitute.org/blog/nist-csf-fair-part-1).
Comments
Post a Comment