ABCDEFGHIJKLMNOPQRSTUVWXYZ
1
7/16/2025
2
NIST CSF 2.0 Categories# ControlsTarget ScorePolicy ScorePractice Score
3
Overall Average Score33.142.85
4
GOVERN (GV)Organizational Context (GV.OC)(5)32.802.80
5
Risk Management Strategy (GV.RM)
(7)33.293.14
6
Roles, Responsibilities, and Authorities (GV.RR)
(4)32.254.00
7
Policy (GV.PO)(2)34.502.50
8
Oversight (GV.OV)(3)33.002.00
9
Supply Chain Risk Management (GV.SC)
(10)32.703.30
10
IDENTIFY (ID)Asset Management (ID.AM)(7)33.142.71
11
Risk Assessment (ID.RA)(10)32.903.30
12
Improvement (ID.IM)(4)34.002.00
13
PROTECT (PR)
Identity Management, Authentication, and Access Control (PR.AA)
(6)32.833.50
14
Awareness and Training (PR.AT)(2)33.501.50
15
Data Security (PR.DS)(4)32.004.00
16
Platform Security (PR.PS)(6)33.172.50
17
Technology Infrastructure Resilience (PR.IR)
(4)33.503.50
18
DETECT (DE)Continuous Monitoring (DE.CM)(5)32.403.00
19
Adverse Event Analysis (DE.AE)(6)33.502.50
20
RESPOND (RS)Incident Management (RS.MA)(5)33.003.00
21
Incident Analysis (RS.AN)(4)32.503.50
22
Incident Response Reporting and Communication (RS.CO)
(2)32.503.50
23
Incident Mitigation (RS.MI)(2)34.501.50
24
RECOVER (RC)
Incident Recovery Plan Execution (RC.RP)
(6)32.503.50
25
Incident Recovery Communication (RC.CO)
(2)34.501.50
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100