This publication describes a voluntary risk management framework of standards, guidelines, and best practices to manage cybersecurity-related risk, meant to to promote the protection and resilience of critical infrastructure and other sectors important to the economy and national security.
