Glossary of Compliance
Compliance Glossary
Our list of curated compliance glossary offers everything you to know about compliance in one place.
NIST Cybersecurity Framework (CSF)
The NIST Cybersecurity Framework (CSF) is a set of best practices that organizations can use to safeguard their data and enhance cyber security. Developed by the National Institute of Standards and Technology (NIST), the framework helps organizations protect critical infrastructure, such as healthcare and manufacturers.
NIST CSF is flexible, adaptable and widely used to benchmark cybersecurity practices. The framework is built around five core functions: Identify, Protect, Detect, Respond, and Recover. These functions guide the organization’s efforts to strengthen their defenses, improve incident response and ensure resilience in the face of evolving threat landscape.
- Identify: It involves developing an understanding of the organization’s environment to manage risks
- Protect: It focuses on implementing protective measures to safeguard the delivery of critical services
- Detect: It aims to identify the occurrence of cybersecurity events in a timely manner through monitoring and detection processes
- Respond: It involves developing and implementing an action plan when a cybersecurity event occurs to minimize the spread and impact
- Recover: It focuses on implementing measures to restore the services impacted by an incident as quickly as possible to ensure business continuity.
Additional reading
ISO 27004 Standard: Key to Evaluating Information Security
How to Create a Cybersecurity Disaster Recovery Plan
Sprinto Named Cloud Compliance Leader in G2
Sprinto: Your growth superpower
Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.
