💼 Business Environment (ID.BE)

• ID: /frameworks/nist-csf-v1.1/id-be

Description

The organization's mission, objectives, stakeholders, and activities are understood and prioritized; this information is used to inform cybersecurity roles, responsibilities, and risk management decisions.

Similar

• Internal
  • ID: dec-b-e2249b2b

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 ID.BE-1: The organization's role in the supply chain is identified and communicated					no data
💼 ID.BE-2: The organization's place in critical infrastructure and its industry sector is identified and communicated					no data
💼 ID.BE-3: Priorities for organizational mission, objectives, and activities are established and communicated					no data
💼 ID.BE-4: Dependencies and critical functions for delivery of critical services are established			3		no data
💼 ID.BE-5: Resilience requirements to support delivery of critical services are established for all operating states (e.g. under duress/attack, during recovery, normal operations)		3	3		no data