The University of SydneyPage 29NIST Cybersecurity FrameworkThree Primary Components–CoreDesired cybersecurity outcomes organized in a hierarchy and aligned to more detailed guidance and controls–ProfilesAlignment of an organization’s requirements and objectives, risk appetite and resources usingthe desired outcomes of the Framework Core–Implementation TiersA qualitative measure of organizational cybersecurity risk management practices