Security by design: A systems road map for NIST Cybersecurity Framework
SANS has developed an implementation guide to help organizations use the NIST Cybersecurity Framework (CSF).
It outlines a five-step approach, illustrated through a simple use case, to ensure the program will meet organizational business objectives as well as
identify and operationalize needed infrastructure changes, whether related to people, process or technology.
A phased approach to planning is also laid out for achieving security goals and objectives. This guide contains a wealth of specific takeaways, graphs and charts, as well as action items for more effective security.