NIST CSF Category – Identity Mgmt and Access Control (PR.AC):
Access to physical and logical assets and associated facilities is limited to authorized users, processes, and devices, and is managed consistent with the assessed risk of unauthorized access.
Hewlett Packard Enterprise’s Clear Pass Policy Manager provides enforcement options that meet both PR.AC and other control family objectives.
NIST CSF Category – Information Protection & Procedures (PR.IP):
Configuration change control processes, patching, and identity management capabilities for grouping and limiting soft access using a “need to know” approach will help you protect data at rest restricting access to the right users.
Microsoft is going “all in” with NIST CSF. Windows Cloud as well as server, dndpoints, and mobile devices will all be NIST CSF enforceable and helps you achieve compliance for logical IDM and access control.
NIST CSF Category – Data Security (PR.DS):
Data in transit is protected with a firewall and network architecture with sophisticated segmentation at wire-speed with options for Software Defined Secure Networks (SDSN) with a balanced and automated approach that protects holistically. Moreover, access to physical and logical assets is limited to authorized users, processes, and devices, and is managed consistent with the assessed risk of unauthorized access.
Juniper’s JunOS platform and Advanced Thread Protection features protects your business with full integration of port-based network access controls for multiple products.
NIST CSF Category – Awareness & Training (PR.AT):
Personnel and partners provided cybersecurity awareness education and are adequately trained to perform their information security-related duties and responsibilities consistent with related policies, procedures, and agreements.
KnowBe4 offers a SCORM capable Security Assurance Training Platform with full Learning Management System providing a critical component to your overall Security Awareness Training requirements as required by many state laws for businesses handling sensitive information.