The five Framework Core Functions are defined below. These Functions are not intended to form a serial path or lead to a static desired end state. Rather, the Functions should be performed concurrently and continuously to form an operational culture that addresses the dynamic cybersecurity risk.
1. Identify – Develop an organizational understanding to manage cybersecurity risk tosystems, people, assets, data, and capabilities.
2. Protect – Develop and implement appropriate safeguards to ensure delivery of critical services.
3. Detect – Develop and implement appropriate activities to identify the occurrence of a cybersecurity event.
4. Respond – Develop and implement appropriate activities to take action regarding a detected cybersecurity incident
5. Recover – Develop and implement appropriate activities to maintain plans for resilience and to restore any capabilities or services that were impaired due to a cybersecurity incident describes a common flow of information and decisions at the following levels within an organization:
Executive
Business/Process
Implementation/Operations