NCSC Cyber Assessment Framework (CAF) 4.0: An outcomes-based, risk-management framework with four key objectives (Managing Security Risk, Protecting Against Cyber Attack, Detecting Cyber Events, and Minimising Impact), primarily used by Operators of Essential Services (OES) in the UK.
How the Druva Data Security Cloud aligns with and supports various NCSC CAF 4.0 Indicators of Good Practice (IGPs), particularly how its solutions help customers achieve outcomes related to risk management, identity and access control, data security, and system resilience.
How the NCSC CAF 4.0 relates to the NIST Cybersecurity Framework (CSF) 2.0, similar risk-based frameworks that map to global standards like ISO/IEC 27001, but differing in presentation and granularity (CAF is UK-centric with 41 assessments; NIST CSF is international with 106 subcategories).
