---
type: "term"
title: "NIST CSF (Cybersecurity Framework)"
description: "The National Institute of Standards and Technology Cybersecurity Framework providing guidelines for managing cybersecurity risk."
resource: "tlctc:term:nist-csf-cybersecurity-framework"
tags:
  - "glossary"
---
# NIST CSF (Cybersecurity Framework)

The National Institute of Standards and Technology Cybersecurity Framework providing guidelines for managing cybersecurity risk. The TLCTC framework integrates with NIST CSF by mapping the 10 threat clusters to the five core functions (Identify, Protect, Detect, Respond, Recover) and the GOVERN function in CSF 2.0. TLCTC proposes formal adoption of the 10 clusters as the standard taxonomy for Threat Identification in the ID.RA (Risk Assessment) category.

**Related reading:** [NIST CSF × TLCTC — critical analysis](https://www.tlctc.net/nist-csf-tlctc.html), [NIST CSF × TLCTC — bridging the gap](https://www.tlctc.net/tlctc-NIST-CSF-Integration.html), [NIST NICE × TLCTC — workforce capabilities](https://www.tlctc.net/tlctc-NIST-NICE.html), [NIST SP 800-218 (SSDF) × TLCTC](https://www.tlctc.net/tlctc-NIST.SP.800-218.html), [NIST threat definitions — structural gap](https://www.tlctc.net/tlctc-NIST-Threat-Definition.html), [NIST AI RMF + MITRE ATLAS × TLCTC](https://www.tlctc.net/tlctc-nist-ai-rmf-mitre-cti.html), [22 NIST definitions of "threat" — TLCTC](https://www.tlctc.net/tlctc-nist-threat-chaos.html), [SABSA × TLCTC — architecture × threat ontology](https://www.tlctc.net/sabsa-tlctc-blog.html), [TLCTC vs 30+ standards & regulations](https://www.tlctc.net/tlctc-regulatorsANDstandards.html), [TLCTC Control Matrix Manager](https://www.tlctc.net/control-matrix.html), [Control Matrix for SME & Private (TLCTC v2.0)](https://www.tlctc.net/tlctc-sme-private-controls.html), [Capability-based planning via 10×(6×2) matrix](https://www.tlctc.net/tlctc-capability-based-planning.html), [TLCTC v2.1 monster prompt — CISO & Risk](https://www.tlctc.net/tlctc-prompt-ciso.html), [The Risk Appetite Conversation Your Board Isn't Having](https://www.tlctc.net/tlctc-strategy.html), [Strategic risk management implementation guide v2.1](https://www.tlctc.net/tlctc-big-picture.html)