4.Question 4Security teams use the NIST Cybersecurity Framework (CSF) as a baseline to manage short and long-term risk.1 pointTrueFalse

What is the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF)?1 pointStandards, guidelines, and best practices that organizations follow voluntarily in order to manage cybersecurity riskA required business framework for ensuring security updates and repairs are successfulA collection of security principles focused on maintaining confidentiality, integrity, and availabilityA set of security controls that help analysts determine what to do if a data breach occurs

Which of the following statements accurately describe the NIST CSF? Select all that apply.1 pointSecurity teams use it as a baseline to manage risk.It consists of standards, guidelines, and best practices.Its purpose is to help manage cybersecurity risk. It is only effective at managing long-term risk.

Which of the following statements accurately describe the NIST CSF? Select all that apply.1 pointIt is a voluntary framework.Security teams use it as a baseline to manage risk.It is only effective at managing short-term risk.Its purpose is to help manage cybersecurity risk

.Question 1What types of risks do security plans address? Select three answers.1 pointShift of market conditionsDamage to assetsDisclosure of dataLoss of information2.Question 2What are the basic elements of a security plan? Select three answers.1 pointProceduresStandardsRegulationsPolicies3.Question 3Fill in the blank: The NIST CSF is a _____ framework that consists of standards, guidelines, and best practices to manage cybersecurity risk.1 pointvoluntarymandatorylimitedrigid4.Question 4What are some benefits of the NIST Cybersecurity Framework (CSF)? Select three answers.1 pointIt’s adaptable to fit the needs of any business.It is required to do business online.It can be used to identify and assess risk.It helps organizations achieve regulatory standards.Coursera Honor Code  Learn more

3.Question 3What is a foundational model that informs how organizations consider risk when setting up systems and security policies?1 pointSensitive personally identifiable information (SPII)Cybersecurity Framework (CSF)Confidentiality, integrity, and availability (CIA) triadGeneral Data Protection Regulation law (GDPR)