Skip to content
Home / Function (NIST CSF 2.0)

Function (NIST CSF 2.0)

The NIST Cybersecurity Framework (CSF) 2.0 organizes cybersecurity activities into six high-level functions that guide organizations in managing and reducing cyber risk. Govern provides strategic oversight, policies, and accountability structures to integrate cybersecurity into organizational decision-making. Identify focuses on understanding assets, business environment, and risk landscape to prioritize protective efforts. Protect involves implementing safeguards such as access controls, encryption, and secure configurations to prevent or limit the impact of cyber events. Detect emphasizes timely discovery of anomalies and potential incidents through monitoring and threat intelligence. Respond outlines processes for containing, mitigating, and communicating during incidents to minimize damage. Finally, Recover addresses restoring capabilities and services after an event to maintain business continuity. Together, these six functions provide a comprehensive, flexible, and risk-based approach to cybersecurity management.

NIST IR 8477 Mapping Relationships Between Documentary Standards, Regulations, Frameworks, and Guidelines

NIST Interagency Report (IR) 8477, titled “Mapping Relationships Between Documentary Standards, Regulations, Frameworks, and Guidelines,” outlines a structured approach for mapping and documenting the relationships between elements-such as controls, requirements,… Read More »NIST IR 8477 Mapping Relationships Between Documentary Standards, Regulations, Frameworks, and Guidelines

NIST SP 1800-28 Data Confidentiality: Identifying and Protecting Assets Against Data Breaches

NIST Special Publication 1800-28, titled “Data Confidentiality: Identifying and Protecting Assets Against Data Breaches,” provides a comprehensive guide to help organizations identify and protect their data assets from unauthorized access… Read More »NIST SP 1800-28 Data Confidentiality: Identifying and Protecting Assets Against Data Breaches

NIST SP 1800-29 Data Confidentiality: Detect, Respond to, and Recover from Data Breaches

NIST Special Publication 1800-29, “Data Confidentiality: Detect, Respond to, and Recover from Data Breaches,” provides organizations with practical guidance on managing data confidentiality risks by focusing on the latter three… Read More »NIST SP 1800-29 Data Confidentiality: Detect, Respond to, and Recover from Data Breaches

ANSSI Recommendations for Secure Administration of AD-based IS (FRENCH)

The ANSSI document “Recommandations pour l’administration sécurisée des SI reposant sur Active Directory” provides comprehensive guidance to secure information systems (SI) that rely on Microsoft’s Active Directory (AD). It emphasizes… Read More »ANSSI Recommendations for Secure Administration of AD-based IS (FRENCH)