[{"Identifier": "CYB.020.010","Activity": "Risk Assessment","Description": "Conduct periodical risk assessments (RA) of organization's systems, and report on the results, in order to improve the security posture of the organization."},{"Identifier": "CYB.020.020","Activity": "Insider Threat","Description": "Provide awareness & training; analysis, and assessment capabilities to the organization's insider threat program in order to counter insider threats."},{"Identifier": "CYB.020.030","Activity": "Cyber Threat Intelligence","Description": "Cyber Threat intelligence is aggregated, transformed, analyzed, interpreted, or enriched to provide the actionable information for decision-making processes."}]