A lens through which to view the characteristics of an organization’s approach to risk—how an organization views cybersecurity risk and the processes in place to manage that risk.

Source: NIST Cybersecurity Framework Version 1.1 | Category: