Chapter 6: Alignment with other frameworks

Because this Framework is relatively straightforward, it would be simple to implement it as part of another implementation project, for example, becoming certified to a best-practice standard, particularly ISO 27001. It can also be implemented to help manage compliance with cybersecurity laws and regulations, such as 23 NYCRR 500, New York State’s Cybersecurity Requirements for Financial Services Companies.

ISO 27001

As mentioned, ISO 27001 is an international standard, providing specifications for a best-practice ISMS. A best-practice ISMS generally focuses on protecting the organization’s information assets, and as such aligns primarily with the identify, protect, and detect functions, and applies ...

Get NIST Cybersecurity Framework - A pocket guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

NIST Cybersecurity Framework - A pocket guide by Alan Calder

CHAPTER 6: ALIGNMENT WITH OTHER FRAMEWORKS

ISO 27001

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly