Question

Describe the NIST Cyber Security Framework, the development of the framework, where the framework is best employed, and the advantages and disadvantages of the framework.

Answer 1

NIST(National Institute of Standards and Technology) has introduced Cyber Security Framework developed on accepted norms and policies set by the cyber security community that lets the organization and its stakeholders protect their systems and digital business against hackers. This framework is basically serving the purpose of setting the standards that the coroportions must follow while combating cyber security risks versus the intruders who might exploit the loopholes in their network infrastructure through malware attacks.

Development of NIST framework -

It comprises of 3 major components viz. - Core, Implementation Tier and Profiles

Core: Delineates the framework into functions, categories and sub categories.

Implementation Tiers: It lets the organisation know how much security compliant they are what measures they need to employ to get entirely compliant.

Profiles: It helps the organizations to be aware of the loopholes and backdoors in their security architecture thus leading to better security.

NIST Framework best employed: It can benefit organizations having IT departments to better manage their assets(data) and prevent data breach.

Advantages:

1. Sets general guideline among all organizations which employ this framework.

2. Lets managers to view how much much compliant they are currently as per the standards.

Disadvantages.

1. If any malicious user is able to by pass the cyber security architecture of any one organization, he will be able to do same with others without any much efforts as all the organizations are using same cybersecurity framework.