Based on the outcome of phase I, a combination of approaches is applied by Coral NIST CSF consultants to conduct the gap analysis.
At this stage the client has implemented the NIST CSF in completeness and has ongoing program to manage and maintain the governance framework.
NIST Cybersecurity Framework is a set of guidelines for mitigating organizational cybersecurity risks, published by the US National Institute of Standards and Technology (NIST). Please read more about this in wikipedia (https://en.wikipedia.org/wiki/NIST_Cybersecurity_Framework)
The NIST Cybersecurity Framework helps businesses of all sizes better understand, manage, and reduce their cybersecurity risk and protect their networks and data. The Framework is voluntary. It gives your business an outline of best practices to help you decide where to focus your time and money for cybersecurity protection. Know more here - https://www.ftc.gov/business-guidance/small-businesses/cybersecurity/nist-framework