NIST Cybersecurity Framework (CSF) 2.0

IDENTIFY (ID): The organization's current cybersecurity risks are understood

Categories

Asset Management (ID.AM):

Assets (e.g., data, hardware, software, systems, facilities, services, people) that enable the organization to achieve business purposes are identified and managed consistent with their relative importance to organizational objectives and the organization's risk strategy

Risk Assessment (ID.RA):

The cybersecurity risk to the organization, assets, and individuals is understood by the organization

Improvement (ID.IM):

Improvements to organizational cybersecurity risk management processes, procedures and activities are identified across all CSF Functions

Business Environment (ID.BE):

[Withdrawn: Incorporated into GV.OC]

Governance (ID.GV):

[Withdrawn: Incorporated into GV]

Risk Management Strategy (ID.RM):

[Withdrawn: Incorporated into GV.RM]

Frameworks and Controls

NIST Cybersecurity Framework V2.0

GV: Govern
ID: Identify
PR: Protect
DE: Detect
RS: Respond
RC: Recover

CMMC Level 1

NIST SP 800-171
- CMMC Level 2 - NIST SP 800-171 r2
CMMC Level 3

NIST Cybersecurity Framework (CSF) 2.0

Categories

Asset Management (ID.AM):

Risk Assessment (ID.RA):

Improvement (ID.IM):

Business Environment (ID.BE):

Governance (ID.GV):

Risk Management Strategy (ID.RM):

Peaches.Cloud

Quick Links

Contact

Support Our Research