SENC: SABSA Enhanced NIST Cybersecurity Framework

The SENC project concerns the NIST Cybersecurity Framework and is aimed at enhancing that framework with a business focused ‘front-end’ process based on SABSA Business Attributes Profiling. A Project Charter is available on request by using the contact form below. 

Project Scope

The SABSA Enhanced NIST Cybersecurity Framework (SENC) project will follow the SABSA development process and lifecycle to align the two frameworks. The scope of the project consists of developing the Cybersecurity Framework (CSF)  contextual architecture to front end CSF with the SABSA attributes profiling process. Additionally, the project aims to create prototype SABSA attributes profiles for the sixteen critical infrastructure sectors that will be used as input for CSF Profiles.

Vision

The SENC project is a volunteer effort led by SABSA practitioners and sponsored by The SABSA Institute. The project's sole purpose is to improve the CSF framework by adding much needed business alignment capability and making it easier for organizations to adopt and use the framework. The SENC project team's vision is that all organizations will have access to an open business-driven risk-based security framework that is effective and easy to use.

Project Goals

The primary goal of the SENC project is to improve the NIST Cybersecurity Framework and make it easy to use. The activities required to achieve this goal are:

1.    Establish a collaborative relationship with NIST,

2.    Align the SABSA Business Attribute Profiling process with the NIST Cybersecurity Framework,

3.    Develop the SABSA Business Attribute Profiles for the sixteen critical infrastructure verticals,

4.    Publish artefacts and usage guidelines

 

Contact the SENC Project Working Group