Telos introduces Xacta 360 for the NIST Cybersecurity Framework to support your implementation of the CSF. Built on the Xacta 360 platform for cyber risk management and security compliance, the application automates and streamlines the processes and documentation required to follow the CSF via software and workflow. This saves time and effort over manual implementations.
Xacta 360 allows you to map any controls and requirements to the CSF gap assessment process and reporting construct (Categories, Subcategories, Functions). Standardizing on a software-driven implementation of a highly recognized standard like the CSF gives you the ability to demonstrate a standard of due care for governance purposes.
As with other Xacta 360 applications, Xacta 360 for CSF helps the user navigate the end-to-end processes involved in the CSF.
Users are presented with a series of input screens that collect and organize all of the data needed for adherence with the CSF. These screens are organized in a logical manner and prompt the user to answer questions and input the data needed to complete each phase of the process.
The application generates the required documents as a byproduct of the process. You do not have to generate these documents from scratch at the end of the process. The application does this for you based on your inputs.
The Xacta CSF application tracks to the CSF’s multi-step process for cyber gap analysis to identify your current cyber risk management posture, where you want it to be, and what you need to do to get there:
SCOPE: Identify your business/mission objectives and high-level organizational priorities.
ORIENT: Identify related systems and assets, regulatory requirements, and overall risk approach.
ASSESS: Conduct a risk assessment, create a target profile, and determine, analyze, and prioritize gaps.
REPORT: Generate the documents you need to support the CSF including system security plan, scorecard, and action plan.
MONITOR: Conduct ongoing risk assessments and remediation actions, set evaluation intervals for selected regulations and requirements.
Xacta 360 CSF:
Provides automation to:
Provides a structured process to:
Auto-generates required reports: