2 days
CISO, security teams, GRC experts, risk managers

NIST CSFThe NIST Cyber Security Framework (CSF) is a governance framework that helps organisation integrate security into their corporate strategy. The NIST CSF employs a risk-based approach to define adequate security controls to mitigate these risks. The NIST framework is a great tool that allows security to adapt to a business.

In this 2 days training course, participants will learn to use the NIST CSF to assess their current security posture and enhance the security posture to mitigate identified risks.

You will understand the different elements of the NIST Cyber Security Framework, know how it applies and how to use it to improve your security governance.

This training course is ideal for Chief Information Security Officers, GRC experts, Risk Managers and software developers, IoT manufacturers (product teams, engineering teams, developers), and non-security technical subject matter experts. This training course is also built for security experts who want to extend their knowledge on the NIST Cyber Security Framework.


  • Understand how to use the NIST CSF and the risk-based security approach
  • Be able to measure the current security posture with the NIST Tiers
  • Adapt the framework to specific parts of the organisation with NIST Profiles (for example business units or geographical locations)
  • Be able to express security objectives
  • Be able to identify existing gaps and define an improvement roadmap
  • Measure your current security posture, and evaluate gaps against corporate objectives
  • Choose appropriate security controls
  • Map security policies and controls with best practices and standards such as ISO 27001 and COBIT.
  • Define a security baseline across the organisation, with a focus on the roles and responsibilities
  • Use the NIST framework as a support to security governance: steering the strategy, establishing a security roadmap, measuring security with KPIs, etc.


  • Introduction to the NIST Cyber Security Framework
  • Assessing the risks
  • Choosing adequate security controls
  • Security as a support to the business
  • How to improve the current security posture?
  • How the NIST CSF can support your security governance?

To receive a quote or to register, please contact us.