IT and operational technology (OT) create value and promising opportunities for enterprises today—they are no longer just support mechanisms for key resources. But as information and technology (I&T) processes and infrastructure have progressed and become more interconnected, the attack surface has expanded. Consequently, enterprises in industries such as finance, retail and energy need to rethink their management of I&T-related risk.
Many enterprises recognize that cybersecurity attacks have become more frequent but lack an approach to mitigate them that integrates cybersecurity standards and enterprise governance of I&T (EGIT). To provide you with best practices to anticipate, understand and optimize I&T risk using cybersecurity standards and EGIT, ISACA has developed the book Implementing the NIST CSF Using COBIT 2019, which walks you through implementing the US National Institute of Standards and Technology (NIST) Framework for Improving Critical Infrastructure Cybersecurity using COBIT 2019. This book also explores how applying the NIST Cybersecurity Framework (CSF) in the context of COBIT 2019 can enhance communication and transparency around I&T risk management and allow enterprises to evaluate their priorities effectively.
To learn more, download this book by visiting the Implementing the NIST CSF Using COBIT 2019 page of the ISACA website.