NIST CSF reference tool anyone use it?

TheFORCE · February 2019

Has anyone used the NIST CSF reference tool here? it's basically a small application with all the NIST Cybersecurity framework.

I have downloaded the tool and I'm trying to add some more columns for my own comments so it is easy for me to find how my internal controls are mapped but I'm having some issues. Getting errors "your access privileges do not allow you to perform this action."

Anyone able to get this working?

JDMurray · February 2019

Is this a free tool? Have a link?

TheFORCE · February 2019

@JDMurray yes its a free tool. You can find the windows application and IOS application here
https://www.nist.gov/cyberframework/csf-reference-tool

I'm trying to map our policies against that so its easier to organizer and easier to find info. Many times external vendors or auditors they bring up these controls so it would be nice tp enter a new colum next to the control and reference my internal policies so when they come and say show me evidence for AC.P 1.1 i can go to that control and find my policy, evidence and other documents.

NavyMooseCCNA · March 2019

Most of this information is available on the Excel spreadsheet you can get from the CSF site. I use that and columns for various this. I would prefer to use the CSET tool, but my manager overruled me.

UnixGuy · March 2019

I haven't used it but I used another proprietary one, they're all similar. Make sure you customise the interview questions, and just use the tool for scoring

NIST CSF reference tool anyone use it?

Comments

'My dear you are ugly, but tomorrow I shall be sober and you will still be ugly' Winston Churchil