In my last blog I examined the NIST Framework Protect function and what that means for organisations, their IT teams, Chief Risk Officers and the C-suite. In this week’s blog I examine how Awareness and training form a major pillar of the Protect function.
In this series of blogs I will examine the Protect function and what that means for organisations, their IT teams, Chief Risk Officers and the C-suite. It is important to develop and implement the appropriate safeguards to ensure delivery of critical infrastructure services. The Protect Function supports the ability to limit or contain the impact of a potential cyber security event. Examples of outcome Categories within this Function include: Access Control; Awareness and Training; Data Security; Information Protection Processes and Procedures; Maintenance; and Protective Technology. So what is access control?