NIST Cybersecurity Framework (CSF)
The NIST CSF control framework is voluntary guidance that is based on existing standards, guidelines, and security best practices. It is intended to help organization better manage and reduce security risks. NIST CSF is a great start into the world of FISMA compliance as many of the controls and artifacts can be re-purposed for several of the largest NIST-related frameworks.
What’s included?
- NIST CSF Security Assessment
- Risk Assessment for Environmental, Human, IT, and Business Risks
- Compliance Calendar and Real-Time Dashboards
- NIST CSF policies, plans, and procedures
- Incident Response Management and Reporting
- Acknowledgement Tracking for Policies, Acceptable Use, Employee Handbooks, and more
- Business Continuity Strategy, Plan, Testing, and Reporting Templates
- Vendor Due Diligence Procedure, Automated Risk Ranking, Assessments, and Reporting
- Security Awareness: Annual, New Hire, Functional/Role-Based Training and Reporting
- Automated Weekly Status Reports and On-Demand Complete Assessment Reports