DVMS Institute
CPD Publications

Create, Protect & Deliver (CPD) Digital Business Value Series

Introduction

The Institute’s publications take stakeholders on a journey into the world where the ever-changing cyber threat landscape intersects with digital business risk. The publications are designed to help organizations understand the relationship between cybersecurity and digital business value and how to leverage that relationship to create an adaptive, cyber-resilient digital business enterprise. The publications provide:

  • A way to make all employees aware of the fundamentals of digital business value and risk, its threat landscape, the NIST Cybersecurity Framework, and the role they play in deterring digital risk
  • The guidance practitioners and business leaders need to communicate with C-Level executives about the business value a NIST Cybersecurity program brings to existing digital business applications and employee productivity programs
  • The guidance cybersecurity and risk management practitioners and auditors need to Assess, Engineer, Implement, and Operationalize a NIST Cybersecurity Framework program across an enterprise and its supply chain.
  • The guidance Governance, Risk, and Assurance teams need to create a top-to-bottom culture of Creating, Protecting, and Delivering digital business value using the NIST Cybersecurity Framework, existing business systems, and the Institutes Create, Protect and Deliver (CPD) Model.

Fundamentals of Adopting the NIST Cybersecurity Framework

The Fundamentals of Adopting the NIST Cybersecurity Framework, is the first book from the Institute’s, Create, Protect, and Deliver (CPD) digital business value series. It takes business leaders and stakeholders on a journey into the world where the ever-changing cyber threat landscape intersects with digital business risk.

The publication also introduces the Create, Protect, and Deliver (CPD) Model – a dynamic model of systems – to explain how any business value that is created must be protected at a level that is proportionate to its value to the organization.

The key takeaway is a paradigm shift in how business leaders and cybersecurity professionals think about cybersecurity and its relationship to digital business value. The content of this book provides those responsible for protecting an organization’s digital business value with a new way to communicate to C-Level executives about the business value a NIST-based cybersecurity program brings to existing digital business applications and employee productivity programs.

Key concepts covered include:

  • Cybersecurity and business risk,
  • The role enterprise risk management plays in adapting the NIST Cybersecurity Framework to an organization,
  • The NIST Cybersecurity Framework (NIST-CSF) and its core functions, implementation tiers, and profiles
  • How the DVMS Institute CPD Model leverages the NIST-CSF and existing business systems to enable organizations to become adaptive, cyber-resilient digital businesses 

A Practitioners Guide to Adapting the NIST Cybersecurity Framework

A Practitioners Guide To Adapting the NIST Cybersecurity Framework, is the second book from the Institute’s, Create, Protect, and Deliver (CPD) digital business value series.

This publication provides practitioners with detailed guidance on creating a NIST Cybersecurity Framework risk management program using NIST Special Publication 800-53, the DVMS Institute’s CPD Model, and existing digital business systems. The outcome is a cyber risk management program and culture fit for use, auditable for purpose, and aligned with global cybersecurity frameworks, standards, and regulations.

The key takeaway from this book is that securing digital business value is something every employee is responsible for doing every day. Cybersecurity is an intrinsic aspect of securing that value and must be factored into an organization’s digital strategy and culture.

Key concepts covered include:

  • Understanding the threat landscape to facilitate a proactive approach to cyber resilience within the context of strategy-risk.
  • An understanding of systems thinking and how to use it to affect change and build a cyber-resilient organization.
  • An understanding of the Digital Value Management System™ (DVMS) as part of an approach to manage digital business risk and achieve the desired cybersecurity posture.
  • Understand the role of adoption and adaptation in achieving the desired cybersecurity posture.
  • An understanding of the relationship between systems thinking, and the Z-X Model™ capabilities practice areas, cybersecurity controls, and the DVMS FastTrack™ approach.
  • An understanding of how mental models and the DVMS practice areas fit to support establishing digital business risk management
  • An understanding of the three layers of the DVMS model and how they form a scalable overlay adaptable to organizations of any size.

Its Time to protect Your Digital Business value!

Publications, Certification Training, Community & Events