A risk-based approach to reducing cybersecurity risk composed of three parts: the Framework Core, the Framework Profile, and the Framework Implementation Tiers.
Sources:
NIST SP 800-37 Rev. 2
under cybersecurity framework
from
NIST Cybersecurity Framework Version 1.1