The main aims and objectives of the article have been described in detail in a separate section before the abstract. The study discussed most of the common facts related to the cyber security in practice under recommendations of government rules and regulations. The title was absolutely reflecting to the overall points that were discussed in the article and all the references were recent, relevant and appropriate

The author has conducted a good literature review at the beginning and identified all the components including main objectives of the cyber security. Most common attacks have been also listed down and described in brief to provide overall idea to the non-cyber security background readers. The main common rules, regulations and recommendations in few countries were listed out in a table form.

A very well-known cyber security incident management framework and its various purposes framework has been used and cited. The national strategy to secure cyberspace and various government policies have been clearly discussed and explained. Hence all the methods explained in the article are valid and reliable. enough detail was provided in order to replicate the study.

This article does not have data to be presented or statistically analyzed. However, if all the components of the NIST cybersecurity framework and Cyber security incident management framework have been well practiced in a particular organization then that would definitely result in a well-protected and secured information system.

The framework proposed addresses all common type of attacks that can hit a particular organization. A list of recommendations in order to develop and use the standards in several critical areas of cyber security and cyber defense was provided by the authors at the end before the conclusion. There is no limitations or future studies are discussed the reason could be might not be applicable for this paper, however author proposed some improvements in the current defense systems.

The study discussed first various cyber-attacks, and their security requirements and solutions which was already known in the body of knowledge. Then the article discussed the cyber security incident management framework (CIMF) which was also known out however some points were traced such as the CIMF should deliberately enable each organization to fully and effectively participate in a coordinated national cyber incident response. After that several standardization challenges were discussed. The tools, security concepts, various policies, security protection, risk management, training, etc. are parts of a cyber-security standard. The author also discussed national strategy to secure cyberspace and various government policies. Which were also known previously however based on all these discussions the author has provided a list of recommendations that are useful for both cyber security and cyber defense which are considered additional things to the body of knowledge. Hence the article is found to be consistent within itself.