Cyber Risk Management Plan
helps your organization receive grant funding and comply with regulations

The CyberESI Cyber Risk Management (CRM) Plan is aligned to the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF), so you can address cybersecurity requirements in current and pending grants and regulation such as:

“carriers’ cybersecurity risk management plans must reflect the latest version of the National Institute of Standards and Technology (NIST) Framework for Improving Critical Infrastructure Cybersecurity”
FCC Enhanced Alternative Connect America Cost Model Final Rule

“has a cybersecurity risk management plan… in place… [that] reflects the latest version of the National Institute of Standards and Technology (NIST) [Cybersecurity Framework]”
NTIA Broadband Equity, Access, and Deployment NOFO

“address cybersecurity risks consistent with the cybersecurity performance goals for critical infrastructure”
USDA Rural eConnectivity Program NOFO

The NIST Cybersecurity Framework

The NIST CSF is the most successful and prevalent approach to cybersecurity risk management in the world. The five Functions of CSF – Identify, Protect, Detect, Respond, and Recover – remind us of the need to balance preventative measures with preparations should something go wrong.

Leadership with Cyber Experience

Before joining CyberESI, our Chief Operating Officer Matt Barrett led the CSF program for NIST.  Through his awareness campaign and efforts, Matt propelled the Cyber Security Framework to world-wide use, with U.S. usage estimated at over 40%. Matt continues to consult on Cybersecurity Framework version 2.0, and is one of the key authors of the CyberESI CRM Plan.

Typical Engagement Includes

A Cybersecurity Risk Management Plan

  • Aligned with the NIST Cybersecurity Framework
  • Reflective of NIST cyber supply chain risk management practices
  • Consistent with Cybersecurity and Infrastructure Security Agency Cross-Sector Cybersecurity Performance Goals
  • Customized to your organization, sector, and business model

A High-Level Cybersecurity Program Gap Analysis

  • Recommending refinements to your cyber risk management program