NIST Cyber Security Framework

The National Institute of Standards and Technology (NIST) provides a manual to improve the overall Cybersecurity of an organization. The Framework provides a common organizing structure for multiple approaches to Cybersecurity by assembling standards, guidelines, and practices that are working effectively today. The most recent version of the NIST Standard is 1.1.

Penetration testing methodology given in NIST 1.1 is divided into five sub-tasks, as shown in the figure below.