Cyber Assessment Framework
The Cyber Assessment Framework (CAF) is a mechanism developed by the United Kingdom's National Cyber Security Centre (NCSC) in 2018 for overlooking the security of operations, to meet the Security of Network & Information Systems Regulations (NIS Regulations) by supporting Critical National Infrastructure (CNI) requirements. Although the tool is mainly used by the CNI, they can be used by other organizations as well.
Source: Wikipedia — Cyber Assessment Framework (CC BY-SA 4.0)