A mechanism for describing an organization’s current and/or target cybersecurity posture in terms of the CSF Core’s outcomes.
Sources:
NIST Cybersecurity Framework 2.0