Framework for Improving Critical Infrastructure Cybersecurity

This framework from the National Institute of Standards and Technology (NIST) can help you better manage cybersecurity risks. It provides a common language and systematic methodology for managing this risk, and features a three-component framework. The “Framework Core” unpacks five pillars of a holistic cybersecurity program (Identify, Protect, Detect, Respond, and Recover); the “Implementation Tiers” help you to prioritise your cybersecurity program activities, as per your goals, risk appetite, and budget; and the “Profiles” section helps you to identify areas to improve.

To see how other organisations have implemented the framework, see the “Success Stories” page.