Cybersecurity practitioners worldwide use the NIST Cybersecurity Framework to strengthen their security program and improve their risk management and compliance processes. The framework is voluntary, but it offers proven best practices that are applicable to nearly any organisation. However, it can seem daunting at first because it includes so many components.

This guide was created to help organisations get started with the NIST Cybersecurity Framework. It will help you prioritise your efforts correctly and build a step-by-step implementation plan that takes into consideration the unique characteristics of your organisation, including your current cybersecurity posture and available resources.