From the course: NIST Cybersecurity Framework (CSF) 2.0 Primer: From Fundamentals to Implementation by Pearson
Join today to access over 25,200 courses taught by industry experts.
CSF profiles
It might have been a while since you previously heard about Profiles. So we'll kind of recap that, and then we'll talk about the actual steps that you can follow, And just sort of a sober, clear-headed analysis of the way things currently are. And then you would typically, or very commonly, create a target profile. And this is like the future, the desired state, the one that you would like to reach to be in like a position where you aren't worried about excess risk, where you've managed, mitigated, or avoided as much risk as possible. So you make a current profile, a target profile, and then you kind of just determine the delta between those. So where are we lacking? And then where we are lacking, which items are most important for us to resolve or address first? So we have to kind of prioritize. There are other approaches. So you can do current and target profiles for your entire organization, or you can get more specific. If you've got a huge company or, you know, in certain…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.