An e-commerce company is revisiting its cybersecurity measures after a high-profile breach in the industry. They are considering adopting a cybersecurity framework that offers a structured approach. Which of the following would be the BEST choice to provide a comprehensive, globally-recognized approach to managing cybersecurity risks?