Scribd
Upload
32 views

Components of Cybersecurity Framework

This document discusses a primer seminar on cybersecurity and cyber defense in times of digital transformation held in November 2022. It introduces topics on artificial intelligence for cybersecurity and defense of cyberspace. The document provides an overview of the Cybersecurity Framework which consists of three main components: the Framework Core, Profiles, and Implementation Tiers. It describes the Framework Core as having five main functions (Identify, Protect, Detect, Respond, Recover) which are further broken down into categories and subcategories. The document also discusses how organizations can use Framework Profiles and Implementation Tiers to assess cybersecurity risk and determine resources and budgets.

Uploaded by

CARLOS QUINTO HUAMAN
Copyright
© © All Rights Reserved
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
32 views

Components of Cybersecurity Framework

This document discusses a primer seminar on cybersecurity and cyber defense in times of digital transformation held in November 2022. It introduces topics on artificial intelligence for cybersecurity and defense of cyberspace. The document provides an overview of the Cybersecurity Framework which consists of three main components: the Framework Core, Profiles, and Implementation Tiers. It describes the Framework Core as having five main functions (Identify, Protect, Detect, Respond, Recover) which are further broken down into categories and subcategories. The document also discusses how organizations can use Framework Profiles and Implementation Tiers to assess cybersecurity risk and determine resources and budgets.

Uploaded by

CARLOS QUINTO HUAMAN
Copyright
© © All Rights Reserved
Available Formats
Download as PPTX, PDF, TXT or read online on Scribd
You are on page 1/ 11

PRIMER SEMINARIO EN “CIBERSEGURIDAD Y CIBERDEFENSA EN TIEMPOS DE

TRANSFORMACIÓN DIGITAL”

INTRODUCCIÓN A LA
CIBERSEGURIDAD Y
CIBERDEFENSA
Noviembre 2022

[email protected]
PRIMER SEMINARIO EN “CIBERSEGURIDAD Y CIBERDEFENSA EN TIEMPOS DE
TRANSFORMACIÓN DIGITAL”

INTELIGENCIA ARTIFICIAL PARA LA


SEGURIDAD Y DEFENSA DEL
CIBERESPACIO
Noviembre 2022

[email protected]
Cybersecurity Framework Components
The Framework consists of 3 main components

3
Framework Implementation Tiers

4 4
Framework Core
Function Category ID
Asset Management ID.AM
Business Environment ID.BE
What processes and assets Governance ID.GV
need protection? Identify Risk Assessment ID.RA
Risk Management Strategy ID.RM
Supply Chain Risk Management ID.SC
Identity Management & Access Control PR.AC
Awareness and Training PR.AT
Data Security PR.DS
What safeguards are
available? Protect Information Protection Processes & Procedures PR.IP

Maintenance PR.MA
Protective Technology PR.PT
Anomalies and Events DE.AE
What techniques can
identify incidents? Detect Security Continuous Monitoring DE.CM
Detection Processes DE.DP
Response Planning RS.RP
Communications RS.CO
What techniques can contain
impacts of incidents? Respond Analysis RS.AN
Mitigation RS.MI
Improvements RS.IM
Recovery Planning RC.RP
What techniques can restore
capabilities? Recover Improvements RC.IM 5
Communications RC.CO
Core: A Translation Layer

Senior Executives
• Broad enterprise
considerations
• Abstracted risk
vocabulary

Specialists in Implementation /
Other Fields Operations
• Specific focus outside • Deep technical
of cybersecurity considerations
• Specialized or no risk • Highly specialized
vocabulary vocabulary

6
Subcategories & Informative References
Function Category ID
Asset Management ID.AM
Subcategory Informative References
ID.BE-1: The organization’s COBIT 5 APO08.04, APO08.05, APO10.03,
Business Environment ID.BE role in the supply chain is APO10.04, APO10.05
Governance ID.GV identified and ISO/IEC 27001:2013 A.15.1.3, A.15.2.1,
Identify communicated A.15.2.2
Risk Assessment ID.RA
NIST SP 800-53 Rev. 4 CP-2, SA-12
Risk Management Strategy ID.RM
Supply Chain Risk Management ID.SC ID.BE-2: The organization’s COBIT 5 APO02.06, APO03.01
Identity Management & Access place in critical NIST SP 800-53 Rev. 4 PM-8
PR.AC
Control infrastructure and its
Awareness and Training PR.AT industry sector is identified
and communicated
Data Security PR.DS
Protect
Information Protection Processes &
PR.IP
Procedures

Maintenance PR.MA ID.BE-3: Priorities for COBIT 5 APO02.01, APO02.06, APO03.01


organizational mission, ISA 62443-2-1:2009 4.2.2.1, 4.2.3.6
Protective Technology PR.PT
objectives, and activities NIST SP 800-53 Rev. 4 PM-11, SA-14
Anomalies and Events DE.AE are established and
Detect Security Continuous Monitoring DE.CM communicated
Detection Processes DE.DP
Response Planning RS.RP ID.BE-4: Dependencies and ISO/IEC 27001:2013 A.11.2.2, A.11.2.3,
Communications RS.CO critical functions for A.12.1.3
delivery of critical services NIST SP 800-53 Rev. 4 CP-8, PE-9, PE-11,
Respond Analysis RS.AN are established PM-8, SA-14
Mitigation RS.MI
Improvements RS.IM
ID.BE-5: Resilience COBIT 5 DSS04.02
Recovery Planning RC.RP requirements to support ISO/IEC 27001:2013 A.11.1.4, A.17.1.1,
Recover Improvements RC.IM delivery of critical services A.17.1.2, A.17.2.1
Communications RC.CO
are established NIST SP 800-53 Rev. 4 CP-2, CP-11, SA-14

7
Framework Profiles
• Alignment with business requirements, risk tolerance, and
organizational resources
• Enables organizations to establish a roadmap for reducing
cybersecurity risk
• Used to describe current state or desired target state of
cybersecurity activities

8
Building a Profile

9
Resource and Budget Decision Making

…and supports on-going operational decisions, too

10
Resources
Where to Learn More and Stay Current

Framework for Improving Critical Infrastructure


Cybersecurity and related news, information:
www.nist.gov/cyberframework

Additional cybersecurity resources:


http://csrc.nist.gov/

Questions, comments, ideas:


[email protected]

You might also like