I have not honestly worked through this framework, but I have read through the documentation and I am intrigued by the possibilities of this approach to managing cyber security risk. I certainly recommend adding it to your reading list. Kudos to the good people at NIST.
top of page
bottom of page