Cyber Risk Mitigation and Incident Response Model Leveraging ISO 27001 and NIST for Global Enterprises.

• Author(s): Iboro Akpan Essien ; Emmanuel Cadet ; Joshua Oluwagbenga Ajayi ; Eseoghene Daniel Erigha ; Ehimah Obuse
• Paper ID: 1710215
• Page: 379-390
• Published Date: 31-01-2020
• Published In: Iconic Research And Engineering Journals
• Publisher: IRE Journals
• e-ISSN: 2456-8880
• Volume/Issue: Volume 3 Issue 7 January-2020

Abstract

In an increasingly interconnected digital landscape, global enterprises face evolving and sophisticated cyber threats that pose significant risks to operations, reputation, and stakeholder trust. Effective cyber risk mitigation and incident response require structured, internationally recognized frameworks that ensure resilience, compliance, and business continuity. This paper explores the integration of ISO 27001 and the NIST Cybersecurity Framework as a unified model for enhancing organizational security posture. ISO 27001 provides a comprehensive information security management system (ISMS) emphasizing governance, risk assessment, and continual improvement, while NIST offers a flexible, adaptive approach to identifying, protecting, detecting, responding to, and recovering from cyber incidents. By leveraging the strengths of both frameworks, enterprises can align strategic objectives with practical, actionable controls that address sector-specific and cross-border compliance requirements. The proposed model underscores the importance of proactive risk identification, rapid containment of threats, and structured recovery to minimize operational disruption. It also highlights the value of ongoing employee awareness, stakeholder engagement, and measurable performance indicators in sustaining long-term resilience. Integrating ISO 27001 and NIST enables organizations to not only meet regulatory demands but also build adaptive, scalable defenses capable of countering emerging cyber risks in a dynamic global environment.

Keywords

Cybersecurity, Risk Mitigation, Incident Response, ISO 27001, NIST Cybersecurity Framework

Citations

IRE Journals:
Iboro Akpan Essien , Emmanuel Cadet , Joshua Oluwagbenga Ajayi , Eseoghene Daniel Erigha , Ehimah Obuse "Cyber Risk Mitigation and Incident Response Model Leveraging ISO 27001 and NIST for Global Enterprises." Iconic Research And Engineering Journals Volume 3 Issue 7 2020 Page 379-390

IEEE:
Iboro Akpan Essien , Emmanuel Cadet , Joshua Oluwagbenga Ajayi , Eseoghene Daniel Erigha , Ehimah Obuse "Cyber Risk Mitigation and Incident Response Model Leveraging ISO 27001 and NIST for Global Enterprises." Iconic Research And Engineering Journals, 3(7)