█
LastWrite
  • > Curriculum
  • > Pricing
  • > For Educators
  • > About
  • > Contact
Log InGet Started

Questions, concerns, bug reports, or suggestions? We read every message, write to us at [email protected].

More ways to reach us →
LastWrite

Structured computer science lessons for aspiring developers and security professionals.

[email protected]

(201) 785-7951

Mon–Fri, 9 AM–5 PM EST

Learn

  • Curriculum
  • Pricing

Company

  • About
  • For Educators & Schools
  • Contact Us

Legal

  • Terms of Service
  • Privacy Policy
© 2026 LastWrite. All rights reserved.
Curriculum/Cybersecurity/NIST Cybersecurity Framework/Protect
35 minBeginner

Protect

After this lesson, you will be able to: Apply Protect: access control, data security, security training.

Protect is the largest CSF function. Access control, data security, awareness, maintenance, protective tech. Most security spend lands here.

Prerequisites:Identify

Protect categories

Access Control (PR.AC). IAM, MFA, least privilege. Awareness & Training (PR.AT), phishing sims, role-based training. Data Security (PR.DS), encryption, integrity. Information Protection Processes (PR.IP), baselines, change mgmt. Maintenance (PR.MA), patching, asset upkeep. Protective Technology (PR.PT), logging, removable media controls.

💡 Highest-leverage Protect controls

MFA (eliminates 99% of credential attacks). Patching (eliminates known-vuln attacks). Backup with offline copy (defeats ransomware impact). Awareness training (reduces phishing success).

Building Protect maturity

  1. 1

    1. MFA everywhere (start with admins).

  2. 2

    2. Patch SLA defined and tracked.

  3. 3

    3. Encrypt data at rest + in transit.

  4. 4

    4. Annual phishing sim + remedial training.

  5. 5

    5. Log everything (centralize for Detect).

  6. 6

    6. Backups, 3-2-1, tested.

Don't gold-plate

Many orgs over-invest in fancy Protect tools while basics (MFA, patching) lag. Diminishing returns. Audit the basics first.

Sign in and purchase access to unlock this lesson.

Sign in to purchase
←Identify
Back to NIST Cybersecurity Framework
Detect→