Vimy provides security program assessments and tailored roadmaps based on the NIST Cybersecurity Framework.
The NIST Cybersecurity Framework is voluntary guidance, based on existing standards, guidelines, and practices for organizations to better manage and reduce cybersecurity risk.
Organizations of all sizes and types use the NIST Cybersecurity Framework as the foundation of their cybersecurity programs.
More information is available on the NIST Cybersecurity Framework website, or through the below video. This information is sourced from the NIST website.
Our comprehensive assessments consist of ..
1. Gap Analysis
A comprehensive gap analysis, based on the NIST Cybersecurity Framework, to identify strengths and weaknesses in the cybersecurity program and evaluate its ability to meet business, regulatory and third-party requirements.
2. Implementation Roadmap Development
A multi-year roadmap to implement processes and technologies to address the identified gaps.
3. Business Requirements & Security Controls Definition
Definition of detailed business requirements and security controls required to take your program to the desired maturity level. Includes development of governance structure and business case.
4. Tool Recommendations
Recommendation of the appropriate tools to implement requirements and improve program efficiency.