What is the MOST important reason to compare framework profiles?

NIST-COBIT-2019 0 Comments

What is the MOST important reason to compare framework profiles?
A . To improve security posture
B . To conduct a risk assessment
C . To identify gaps

Answer: C

Explanation:

The most important reason to compare framework profiles is to identify gaps between the current and target state of cybersecurity activities and outcomes, and to prioritize the actions needed to address them12. Framework profiles are the alignment of the functions, categories, and subcategories of the NIST Cybersecurity Framework with the business requirements, risk tolerance, and resources of the organization3. By comparing the current profile (what is being achieved) and the target profile (what is needed), an organization can assess its cybersecurity posture and develop a roadmap for improvement4.

Reference: 1: Cybersecurity Framework Components | NIST 2: Implementing the NIST Cybersecurity Framework Using COBIT 2019 | ISACA 3: Examples of Framework Profiles | NIST 4: Connecting COBIT 2019 to the NIST Cybersecurity Framework – ISACA

Latest NIST-COBIT-2019 Dumps Valid Version with 50 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download NIST-COBIT-2019 PDF    NIST-COBIT-2019 Questions Online Training
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments