According to NIST, what is the first action required to take advantage of the cybersecurity framework?
Identify the key business outcomes.
Understand the threats and vulnerabilities.
Conduct a risk assessment.
Analyze and prioritize gaps to create the action plan.