NIST Cybersecurity Framework
Assess Coverage for 90% of CSF Technical Controls
Developed by the National Institute of Standards and Technology (NIST), the NIST Cybersecurity Framework (CSF) is comprised of best practice guidelines to help organizations identify, implement and enhance their cybersecurity practices and use a common language to communicate issues to stakeholders.Learn More About NIST ▶
While adopting the NIST Cybersecurity Framework is voluntary, it is quickly gaining acceptance with government agencies and commercial organizations. But many users face the challenge of how to operationalize CSF, assess conformance and drive improvement.
With Tenable.sc™ (formerly SecurityCenter®), you can measure, visualize and effectively communicate adherence to the CSF. It automates the assessment of more than 90 percent of CSF technical controls, providing IT security practitioners, auditors, CISOs and executive management near real-time assurance of technical control status across the Framework’s Identify, Protect, Detect and Respond functions.
In addition, by delivering continuous visibility across your entire environment, including cloud, virtualized and mobile environments, Tenable.sc helps you improve and maintain your cybersecurity program – and transform your security.
Get the Solution Story
Simplify CSF Adoption
Learn how Tenable.sc helps you automate CSF adoption.
The Only True Continuous Monitoring Solution
Tenable.sc collects data from multiple sensors to provide advanced analysis of vulnerability, threat, network traffic and event information and deliver a continuous view of IT security across your environment. It gives you the information you need to continuously adapt and improve your security posture to protect your organization.
Supports most technical controls prescribed in the NIST CSF, ISO/IEC 27002 and CIS CSC frameworks, and builds them into an automated control foundation for managing risk and securing the business.
Use active scanning combined with continuous listening to obtain a complete view of control conformance across your environment.
Analyze Third-Party Security Products
Audit configurations of many third-party products and analyze events generated by them to identify control weaknesses.
Dynamic Asset Grouping
Focus dashboards to display a complete security and compliance view for services in your industrial control system and IT networks, including physical and virtual infrastructure, cloud and mobile environments.
Measure, Visualize and Communicate Adherence to Controls
Easily measure, visualize and understand your technical control conformance status by using dashboard templates, and identify gaps between where you are and where you want to be.
Map Technical Control Status to Business Objectives
Use Tenable.sc Assurance Report Cards® to compare your current security status to the desired status and help you build a roadmap for demonstrating a defensible security program.
“By 2020, more than 50% of organizations will use the NIST Cybersecurity Framework, up from the current 30% in 2015.”Gartner: Best Practices in Implementing the NIST Cybersecurity Framework, January, 21, 2016
- Tenable.sc Data Sheet
- Tenable.sc Support for the NIST Cybersecurity Framework White Paper
- NIST Framework for Improving Critical Infrastructure Cybersecurity Technical Control Automation White Paper
- CSF by the Numbers Infographic
- Successfully Implementing the NIST Cybersecurity Framework Webinar
- Automate, Simplify and Communicate NIST CSF Conformance Webinar
- Survey Report: Trends in Security Framework Adoption