A Practitioner's Guide to Adapting the NIST Cybersecurity Framework

This is the second volume in the Create, Protect, and Deliver Digital Business Value series.

It provides practitioners with detailed guidance on creating a NIST Cybersecurity Framework risk management program using NIST Special Publication 800-53, the DVMS Institute's CPD Model, and existing digital business systems. The outcome is a cyber risk management program and culture fit for use, auditable for purpose, and aligned with global cybersecurity frameworks, standards, and regulations.

The key takeaway from this book is that securing digital business value is something every employee is responsible for doing every day.

Cybersecurity is an intrinsic aspect of securing that value and must be factored into an organization's digital strategy and culture. A culture of cybersecurity starts at the top of an organization and is translated into strategic policies and training programs which are designed to embed that culture across the whole enterprise and its supply chain.

The material in this book provides the rubric for the NIST Cybersecurity Professional (NCSP) Practitioner and Specialist courses. It presents the narrative that accompanies your course material.