GapCross Logo

Premium AssessmentCybersecurity

The NIST Cybersecurity Framework 1.1

Cybersecurity risk affects a company’s bottom line. It can drive up costs and affect revenue. It can harm an organization’s ability to innovate and to gain and maintain customers.

An assessment by GapCross - built upon the Framework for Improving Critical Infrastructure Cybersecurity Version 1.1, NIST

Cybersecurity risk affects a company’s bottom line. It can drive up costs and affect revenue. It can harm an organization’s ability to innovate and to gain and maintain customers. Cybersecurity can be an important and amplifying component of an organization’s overall risk management.

This assessment works through the 5 functions that cover 23 categories of cybersecurity.

This assessment turns the simple checklist into a tool to identify and collect critical documents, record observations, flag and track corrective action, produce professional reports for clients or upper management, retain information as permanent records, and perform reassessments based on previous results. The assessment addresses:

  • Identification of documentation
  • Protection measures
  • Detection measures
  • Response plans and methods
  • Recovery plans and activities

The Framework is available on NIST's website. References for each requirement are provided within the assessment program.

Review the NIST Online Learning to understand more about using the Framework.

The Framework provides a common language and systematic methodology for managing cybersecurity risk. The Core includes activities to be incorporated in a cybersecurity program that can be tailored to meet any organization’s needs.  The Framework is designed to complement, not replace, an organization's cybersecurity program and risk management processes.