Framework: The NIST Cybersecurity Framework (CSF)
Episodes
GV.RM-02 - Defining Risk Appetite and Tolerance
25 Feb 2025
Contributed by Lukas
GV.RM-02 requires organizations to define and communicate their risk appetite—the level of risk they are willing to accept—and translate it into s...
GV.RM-01 - Setting Cybersecurity Risk Management Goals
25 Feb 2025
Contributed by Lukas
GV.RM-01 involves setting clear, agreed-upon objectives for managing cybersecurity risks across the organization, ensuring alignment among stakeholder...
GV.OC-05 - Mapping Organizational Dependencies
25 Feb 2025
Contributed by Lukas
GV.OC-05 focuses on recognizing and sharing knowledge about the external outcomes, capabilities, and services the organization relies upon to function...
GV.OC-04 - Prioritizing Critical Objectives and Services
25 Feb 2025
Contributed by Lukas
GV.OC-04 centers on identifying and communicating the critical objectives, capabilities, and services that stakeholders rely on, ensuring they are pri...
GV.OC-03 - Navigating Legal and Regulatory Cybersecurity Requirements
25 Feb 2025
Contributed by Lukas
GV.OC-03 addresses the need for organizations to fully grasp and manage the legal, regulatory, and contractual obligations that govern their cybersecu...
GV.OC-02 - Understanding Stakeholder Needs in Cybersecurity
25 Feb 2025
Contributed by Lukas
GV.OC-02 focuses on identifying and comprehending the stakeholders—both within and outside the organization—who influence or are impacted by cyber...
GV.OC-01 - Aligning Cybersecurity with Organizational Mission
25 Feb 2025
Contributed by Lukas
The GV.OC-01 subcategory emphasizes the importance of aligning an organization’s cybersecurity risk management efforts with its overarching mission....
Introduction to NIST CSF Profiles
24 Feb 2025
Contributed by Lukas
Cybersecurity is not a one-size-fits-all approach, and that’s where N I S T C S F Profiles come in. In this episode, we break down how organizations...
Introduction to NIST 800-53
24 Feb 2025
Contributed by Lukas
In this episode of Bare Metal Cyber Presents: Framework, we take a deep dive into NIST 800-53, one of the most comprehensive security frameworks for i...
Cybersecurity Risk Management
24 Feb 2025
Contributed by Lukas
In this episode of Bare Metal Cyber Presents: Framework, we explore the critical role of risk management in the NIST Cybersecurity Framework 2.0 (CSF ...
Cybersecurity Maturity
24 Feb 2025
Contributed by Lukas
In this episode of Bare Metal Cyber Presents: Framework, we break down the cybersecurity maturity tiers in NIST Cybersecurity Framework 2.0 (CSF 2.0) ...
The Fundamentals of Cybersecurity Controls
24 Feb 2025
Contributed by Lukas
In this episode of Bare Metal Cyber Presents: Framework, we take a deep dive into cybersecurity controls—the fundamental safeguards that protect org...
Introduction to Gap Assessments
24 Feb 2025
Contributed by Lukas
In this episode of Bare Metal Cyber Presents: Framework, we dive into the importance of cybersecurity gap assessments—an essential process for ident...
Introduction to the NIST CSF
24 Feb 2025
Contributed by Lukas
In this episode of Bare Metal Cyber Presents: Framework, we introduce the National Institute of Standards and Technology (NIST) and its groundbreaking...