CompTIA CySA+ Practice Test 2025 – The Comprehensive All-in-One Guide to Exam Success!

Question: 1 / 400

Which framework is commonly used to describe cybersecurity posture?

ISO 27701

NIST Cybersecurity Framework

The NIST Cybersecurity Framework is widely recognized for describing an organization's cybersecurity posture. This framework helps organizations understand, manage, and reduce cybersecurity risk by providing a structured approach to identifying, assessing, and mitigating cybersecurity threats.

The framework is composed of five core functions: Identify, Protect, Detect, Respond, and Recover. These functions create a comprehensive understanding of an organization's cybersecurity capabilities and allow for ongoing improvement. By adopting the NIST Cybersecurity Framework, organizations can align their security measures with their business goals, enhance communication about cybersecurity risks, and develop a strategy for managing and responding to cyber threats effectively.

The other frameworks mentioned have different focuses and applications. ISO 27701 pertains specifically to privacy information management, while CIS Controls provide a set of best practices for securing IT systems and data. COBIT is an IT governance framework that emphasizes the governance and management of enterprise IT but does not provide a specific posture assessment like the NIST Cybersecurity Framework does.

Get further explanation with Examzify DeepDiveBeta

CIS Controls

COBIT

Next Question

Report this question

Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy