NIST Cybersecurity Framework (CSF) 2.0

NIST Cybersecurity Framework (CSF) 2.0

DETECT (DE): Possible cybersecurity attacks and compromises are found and analyzed

Categories

Continuous Monitoring (DE.CM):

Assets are monitored to find anomalies, indicators of compromise, and other potentially adverse events

Adverse Event Analysis (DE.AE):

Anomalies, indicators of compromise, and other potentially adverse events are analyzed to characterize the events and detect cybersecurity incidents

Detection Processes (DE.DP):

[Withdrawn: Incorporated into other Categories and Functions]