Home » NIST Cybersecurity Framework

NIST Cybersecurity Framework

The National Institute of Standards and Technology (NIST) developed a Cybersecurity Framework which is a voluntary guidance, based on existing standards, guidelines, and practices for organizations to better manage and reduce cybersecurity risk. In addition to helping organizations manage and reduce risks, it was designed to foster risk and cybersecurity management communications amongst both internal and external organizational stakeholders.

It includes five Functions which have been selected because they represent the five primary pillars for a successful and holistic cybersecurity program. They aid organizations in easily expressing their management of cybersecurity risk at a high level and enabling risk management decisions.

The five Functions included in the Framework Core are:

Identify This function assists in developing an organizational understanding to managing cybersecurity risk to systems, people, assets, data, and capabilities. Understanding the business context, the resources that support critical functions, and the related cybersecurity risks enables an organization to focus and prioritize its efforts, consistent with its risk management strategy and business needs.
Protect This function outlines appropriate safeguards to ensure delivery of critical infrastructure services. The Protect Function supports the ability to limit or contain the impact of a potential cybersecurity event.
Detect This function defines the appropriate activities to identify the occurrence of a cybersecurity event. The Detect Function enables timely discovery of cybersecurity events.
Respond This function includes appropriate activities to take action regarding a detected cybersecurity incident. The Respond Function supports the ability to contain the impact of a potential cybersecurity incident.
Recover This function identifies appropriate activities to maintain plans for resilience and to restore any capabilities or services that were impaired due to a cybersecurity incident. The Recover Function supports timely recovery to normal operations to reduce the impact from a cybersecurity incident.

 

Learn more about the Cybersecurity Framework's five Functions in the NIST website.

News

M-Sec was launched in 2018. In its last year, the project is currently implementing pilots to test, validate and showcase the impact of the M-Sec solution. Learn more about M-Sec’s Use Case 2: "Home monitoring security system for ageing people", to better understand how this Use Case is being implemented in the Spanish city of Santander, its main achievements and challenges, and how the M-Sec solution has been a decisive factor on the improvement of people’s lives in that context

Future Events

Save the date: 9 March 2021, 11.00 – 12.30 CET

The Open Call Webinar organized by the TRINITY consortium will guide you through the application process for the TRINITY funding to give you all the instruments necessary to submit a competitive proposal! Don’t miss it.

Webinar Agenda

11.00 – 11.10 Introduction to TRINITY Open Call #2- Prof. Minna Lanz, Professor of Mechanical Engineering at Tampere University and TRINITY Coordinator.

09/03/2021

Developing a secured IoT Smart City Framework for a better digital future

The EU Industry Days is Europe’s flagship annual event on industry, serving as the main platform to discuss industrial challenges and co-develop opportunities and policy responses in an inclusive dialogue with a wide range of partners. The next edition will take place in the week of 22-26 February 2021.

09/03/2021