The National Institute of Standards and Technology (NIST) makes available a widely adopted risk-based Cybersecurity Framework—a set of existing standards, guidelines and practices to help organizations manage cyber risks. The framework provides a common language to address and manage cyber risk in a cost-effective way based on business needs, without placing additional regulatory requirements on businesses.
Rofori offers advisory services to help you with your cybersecurity capability maturity model planning and execution. We can help you establish a “Framework Profile” and configure a list of outcomes that you choose from the CSF categories and subcategories, based on your needs, risk assessments, resources, and ability to execute. Please contact us to review how we may help you establish and maintain CSF best practices.