From the course: NIST Cybersecurity Framework (CSF) 2.0 Primer: From Fundamentals to Implementation by Pearson
Join today to access over 25,200 courses taught by industry experts.
Key takeaways
In summary, the CSF comprises three main components. There are their CSF core. This is the taxonomy, that whole hierarchy that we discussed. There are profiles, and these allow us to take the stuff from core and translate that into actual actions and objectives. And then there are tiers, implementation tiers, which are another frame that we can view the organization with to specifically evaluate the rigor of our cybersecurity risk management processes. So these three things together are what make up CSF as a whole. So core has the specific hierarchy that we talked about. And we'll just review that really quickly. So obviously, core itself is like the biggest container. And then within core, it's subdivided into these functions, govern, identify, protect, detect, respond, recover. Those are the overall functions, kind of the highest level of division within Core. And then they are subdivided into categories, as we saw, which are then further subdivided into subcategories, as we see…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.