Practice free →
HomeBCA Cyber SecuritycybersecurityCybersecurity Fundamentals › Which NIST CSF function focuses on developing or…

Which NIST CSF function focuses on developing organisational UNDERSTANDING of cybersecurity risk to systems, assets, data, and capabilities?

AIdentify (ID)
BProtect (PR)
CDetect (DE)
DRespond (RS)
Answer & Solution
Correct answer: A. Identify (ID)
1. The IDENTIFY function builds the foundation: knowing what you have and what risks apply. 2. Categories include: Asset Management (ID.AM), Business Environment (ID.BE), Governance (ID.GV), Risk Assessment (ID.RA), Risk Management Strategy (ID.RM), Supply Chain Risk (ID.SC). 3. Without proper Identify activities, the other functions miss critical assets and fail. 4. PROTECT (B) is implementation of safeguards. DETECT (C) is monitoring. RESPOND (D) is incident handling. _Source: NIST Cybersecurity Framework v1.1, §2.1 — Identify Function, p. 6-7._
Solve this in the app — BCA Cyber Security practice & 24k+ MCQs →
Related questions