Resource · Glossary

    What Is the NIST Cybersecurity Framework (CSF)?

    The NIST CSF is the common language of security programs: six functions — Govern, Identify, Protect, Detect, Respond, Recover — that let an organization describe where it stands and where it's going. Voluntary on paper, it's the benchmark auditors, insurers, and boards actually measure against.

    The Functions

    Six Functions, One Program

    Govern & Identify

    Know your risk posture and — critically — your complete asset inventory. You can't secure what isn't on the list.

    Protect

    Access control, hardening, patch and firmware baselines, and change management across the estate.

    Detect

    Continuous monitoring for anomalies — including the hardware and management-plane events most programs skip.

    Respond & Recover

    Incident process, communication, restoration — and the evidence trail proving it worked.

    The Infrastructure Angle

    CSF Compliance Starts with Asset Truth

    Read the CSF as an infrastructure team and a pattern appears: every function assumes you know what you have and can watch it. Identify demands a complete, current hardware inventory; Protect requires firmware baselines and tracked configuration changes; Detect includes the management plane — BMC logins, out-of-band changes — that normal security tooling never sees. That's exactly the evidence layer Sensaka produces as a side effect of operations: auto-collected asset inventory, firmware and configuration baselines with drift detection, hardware and management-plane event capture, and audit-ready records for the assessor's spreadsheet.

    Identify: inventory that's actually complete
    Protect: firmware baselines, drift flagged
    Detect: BMC and OOB events captured
    Respond: asset context speeds triage
    Evidence exported, not assembled
    FAQ

    Common Questions About NIST CSF

    What is the NIST CSF?

    The NIST Cybersecurity Framework is a voluntary framework from the US National Institute of Standards and Technology for managing cybersecurity risk. Version 2.0 organizes security work into six functions: Govern, Identify, Protect, Detect, Respond, and Recover.

    Is NIST CSF mandatory?

    For most private organizations it's voluntary, but it's contractually required in much US federal supply-chain work and widely used as the de facto benchmark auditors and insurers assess against.

    What is the difference between NIST CSF and NIST 800-53?

    The CSF is the high-level framework (what outcomes to achieve); 800-53 is the detailed control catalog (specific controls to implement). Many organizations use the CSF to structure their program and 800-53 for control depth. NIST 800-37 adds the risk management process.

    Where does infrastructure fit in the NIST CSF?

    Everywhere the framework says 'know and watch your assets': Identify requires a complete hardware inventory, Protect covers firmware and configuration baselines, Detect includes hardware and management-plane events. An asset you haven't inventoried can't be protected or detected.

    The Identify function, automated