In this blogpost, we will discuss the cloud security framework presented by the National Institute of Standards and Technology (NIST). Moreover, the five components of the framework namely, identify, protect, detect, respond, and develop are also briefly highlighted.
With the increasing threats to the cloud security, the need to devise advanced methodologies to deal with these threats has increased. In this regard, the National Institute of Standards and Technology (NIST) has introduced the cloud security framework that offers the important key functions for management of security risks in the cloud environment. The cloud policy framework serves as the guidelines for the organizations to develop the security infrastructure. The five components of this framework include:
- Identify—this refers to understanding the complete organizational requirements pertinent to the security and performing a comprehensive assessment of security risks.
- Protect—suggests deploying the security procedures and measures so that the organizational infrastructure can be protected in the wake of attacks
- Detect— the organization should have network monitoring procedures in place so that any issues or attempts to attack the organization can be proactively detected
- Respond— in response to the potential or active threats to the organizational business appropriate countermeasures are needed to deal with the attacks
- Develop—this refers to devising the procedures and measures to restore the operations in case of any disruption
