Last week I introduced the National Institute of Standards and Technology Cybersecurity Framework, commonly referred to as the CSF and its primary functions. Identify, protect, detect, respond and recover. What are these five functions actually mean? Let's start with identify. Identify means that we work to develop an organizational understanding that helps us manage cybersecurity risks to our systems, our assets data and our capabilities and have that protect the protect function helps us to develop, implement appropriate safeguards to help us ensure the delivery of critical infrastructure services.
Detect means we have to develop and implement appropriate activities to identify that a cybersecurity event has actually happened. Now, the respond function simply means that we must develop and implement appropriate activities to actually do something about a detected cyber event.
Recover function helps us to develop, implement appropriate activities for resilience and to restore any capabilities or services that were impaired due to a security event. I think that's probably a good stopping point for today since it gets a whole lot more complicated after this.
