on - edited by
ChristineTran
Cybersecurity threats exploit the increased complexity and connectivity of critical infrastructure systems, which places national security, the economy, and public safety at risk. To combat these cyber risks, NIST (National Institute of Standards and Technology) has developed a risk-based Cybersecurity Framework to provide government agencies and the private sector with industry standards and best practices to help manage cybersecurity risks. In May 2017, the U.S. Presidential Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure was signed, holding agencies, as well as owners and operators of critical infrastructure in the U.S., accountable for managing cybersecurity risks.
Archer NIST-Aligned Cybersecurity Framework app-pack provides straightforward guidelines for addressing and managing cybersecurity risks. Profile owners can catalog the current state, prioritize and scope profile elements, and define their desired or targeted state outcomes for their organization’s cybersecurity program. Assessors then evaluate these profiles against the Cybersecurity Framework categories. Previous assessments can be archived for comparison with current Profile and measure progress. Reports and dashboards provide clear insight to the cybersecurity current state and progress being made toward the desired cybersecurity state.
With the Archer NIST-Aligned Cybersecurity Framework offering, government agencies and private sector businesses can assess and measure their cybersecurity posture, address gaps, and report on cybersecurity posture in a meaningful way that is understood by all stakeholders.
NIST has developed the NIST Privacy Framework which utilizes the same methodology and process to evaluate an organizations implementation to protect individuals’ privacy. The NIST Privacy Framework contains Core Activities that overlap with the NIST Cybersecurity Framework.
The Archer NIST-Aligned Cybersecurity Framework app-pack has been combined with the Archer NIST-Aligned Privacy Framework and Archer NIST-Aligned AI Risk Management Framework app-packs to allow you to assess privacy, cybersecurity, and artificial intelligence practices within your organization. Check out the Archer NIST-Aligned Privacy Framework app-pack and Archer NIST-Aligned AI Risk Management Framework, to gain a better understanding of how this offering can augment your Archer NIST-Aligned Cybersecurity Framework implementation.
Benefits
- Concise methodology allows organizations to understand how your cybersecurity efforts stack up relative to NIST’s guidance and authoritative sources
- Common language ensure clear communication of requirements and progress across all stakeholders, including the IT security team, management, partners, contractors, suppliers, and others
- Application of NIST Cybersecurity Framework version 1.1, released in April 2018, and risk management best practices improve cybersecurity and resiliency of critical infrastructure, regardless of organization size or level of cybersecurity sophistication
- Designed to assist government and critical infrastructure entities manage cybersecurity requirements in keeping with the U.S. Presidential Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure
Key Features
- Prioritize and scope the organization's business objectives and priorities
- Create a Current Profile that indicates progress being made toward target outcomes
- Track NIST Cybersecurity Framework library versions for cybersecurity assessments
- Risk assess the operational environment and identify the likelihood and impact of a cybersecurity event
- Identify a Target Profile that describes the organization's desired cybersecurity outcomes
- Analyze the Current Profile against the Target Profile by function, category, level or business process to determine gaps
- Implement an Action Plan to identify necessary steps to remediate gaps
- Ability to conduct assessments against NIST Privacy Framework and NIST AI Risk Management Framework
Solution and Platform Information
- Solution Area:
- Regulatory & Corporate Compliance Management
- IT & Security Risk Management
- Prerequisite Use Cases: This offering does not require any prerequisites.
- Supported Platform Version: Archer Platform Release 6.13 and later
- Supported Archer Environments:
- On-Premises
- Archer Hosted
- Archer SaaS
Archer On-Demand Application (ODA) Licenses
- Three (3) Archer On-Demand Application (ODA) licenses are required for Archer NIST-Aligned Cybersecurity Framework App-Pack
- For existing Archer NIST-Aligned Cybersecurity Framework app-pack implementations, please review the Archer Help Center for information on-demand application requirements and upgrade best practices.
For More Information
To learn more about Archer NIST-Aligned Cybersecurity Framework App-Pack:
- Read the solution brief;
- Review the Archer Help Center for instructions on how to implement this offering.
- Download the installation package.
The Archer NIST-Aligned Cybersecurity Framework App-Pack is an offering provided through the Archer Exchange to enhance your existing Archer implementation. To learn more about the Archer Exchange, please visit the Archer Exchange on the Archer Community.
For Additional Support
To learn more about this offering, please contact your Account Rep for additional details. For technical support questions regarding this offering, please open a support case.
Archer NIST-Aligned Cybersecurity Framework Dashboard
Archer NIST-Aligned Cybersecurity Framework Profile Scorecard
