[{"Identifier":"CYB.020.010", "Activity":"Risk Assessment", "Description":"Conduct periodical risk assessments (RA) of organization's systems, and report on the results, in order to improve the security posture of the organization."}, {"Identifier":"CYB.020.020", "Activity":"Insider Threat", "Description":"Provide awareness & training; analysis, and assessment capabilities to the organization's insider threat program in order to counter insider threats."}, {"Identifier":"CYB.020.030", "Activity":"Cyber Threat Intelligence", "Description":"Cyber Threat intelligence is aggregated, transformed, analyzed, interpreted, or enriched to provide the actionable information for decision-making processes."}]