NIST Cybersecurity Framework
Publications

Create, Protect & Deliver Digital Business Value Series

Cybersecurity Risk management = protecting Digital Business Value

Our Authors Dave Nichols & David Moskowitz share their thoughts on why they Wrote the Fundamentals of Adopting the NIST Cybersecurity Framework

Introduction

The Institute’s NIST Cybersecurity Professional publications take stakeholders on a journey into the world where the ever-changing cyber threat landscape intersects with digital business risk. The publications are designed to help organizations understand the relationship between cybersecurity and digital business value and how to leverage that relationship to create an adaptive, cyber-resilient digital business enterprise. The publications provide:

  • A way to educate all employees aware of the fundamentals of digital business value, its threat landscape, the NIST Cybersecurity Framework, and the risk associated with all digital business activities.
  • The guidance practitioners and business leaders need to communicate with C-Level executives about the business value a NIST Cybersecurity program brings to existing digital business applications and employee productivity programs
  • The guidance cybersecurity and risk management practitioners need to Assess, Engineer, Implement, and Operationalize a NIST Cybersecurity Framework program across an enterprise and its supply chain.
  • The guidance Governance, Risk, and Assurance teams need to create a top-to-bottom culture of Creating, Protecting, and Delivering digital business value using the NIST Cybersecurity Framework, existing business systems, and the Institutes CPD Model.

Fundamentals of Adopting the NIST Cybersecurity Framework

The Fundamentals of Adopting the NIST Cybersecurity Framework, is the first book from the Institute’s, Create, Protect, and Deliver (CPD) digital business value series. It takes business leaders and stakeholders on a journey into the world where the ever-changing cyber threat landscape intersects with digital business risk.

The publication also introduces the Create, Protect, and Deliver (CPD) Model – a dynamic model of systems – to explain how any business value that is created must be protected at a level that is proportionate to its value to the organization.

The key takeaway is a paradigm shift in how business leaders and cybersecurity professionals think about cybersecurity and its relationship to digital business value. The content of this book provides those responsible for protecting an organization’s digital business value with a new way to communicate to C-Level executives about the business value a NIST-based cybersecurity program brings to existing digital business applications and employee productivity programs.

Key concepts covered include:

  • Cybersecurity and business risk,
  • The role enterprise risk management plays in adapting the NIST Cybersecurity Framework to an organization,
  • The NIST Cybersecurity Framework (NIST-CSF) and its core functions, implementation tiers, and profiles
  • How the DVMS Institute CPD Model leverages the NIST-CSF and existing business systems to enable organizations to become adaptive, cyber-resilient digital businesses 

Its Time to protect Your Digital Business value!

Publications, Certification Training, Community & Events