From the course: Translating Cybersecurity for SMBs - Using the NIST Cybersecurity Framework 2.0
Join today to access over 25,300 courses taught by industry experts.
Define your profile
From the course: Translating Cybersecurity for SMBs - Using the NIST Cybersecurity Framework 2.0
Define your profile
- [Instructor] Once you have a notional idea of your tier, it can be beneficial to start writing down the details of what you're doing and what you'd like to improve. This information is best captured in a profile. A profile provides a mechanism for capturing the current and target state of your business's cybersecurity capabilities. In our earlier video on leveraging the cybersecurity framework, we talked about how to start building out a target profile by evaluating and defining internal business requirements based on your cyber risks and external requirements driven by compliance, regulatory, and contractual requirements. Here I'd like to dig into creating a current state profile. There's no right or wrong way to create a profile as long as the information is helpful to you for understanding, tailoring, assessing, prioritizing, or communicating cybersecurity outcomes. Profiles can be created leveraging the framework's functions, categories, or subcategories. They can be composed of…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.