The National Institute of Standards and Technology (NIST) helps organizations understand and improve their management of cybersecurity risk. To help with that, NIST has published cybersecurity framework guidance.
The NIST Cybersecurity Framework is voluntary guidance addressing risk management and related communications among internal and external stakeholders. It helps organizations align cybersecurity risk management with broader enterprise risk management processes.
The Framework includes five key functions – Identify, Protect, Detect, Respond, Recover. A link to the guidance may be accessed by clicking here.