Hi all. Just getting on the first steps of understanding NIST and its benefits to improve Cyber Security. In terms of policies......i know some will overlap etc but is it standard to combine policies to limit paperwork or have an individual policy in place for each of the 110 controls that NIST requires?