Industrial Control Systems (ICS) are used in many industries to monitor and control physical processes. As ICS continue to adopt standard commercial information technology (IT) solutions to promote corporate business systems connectivity and remote access capabilities they become more vulnerable to cyber threats.  The National Cybersecurity Center of Excellence (NCCoE), in conjunction with the National Institute of Standards and Technology (NIST) Engineering Laboratory (EL), has demonstrated a set of behavioral anomaly detection capabilities to support cybersecurity in manufacturing organizations. Use of these capabilities enables manufacturers to detect anomalous conditions in their operating environments to mitigate malware attacks and other threats to the integrity of critical operational data. NIST’s NCCoE and EL have mapped these demonstrated capabilities to the NIST Cybersecurity Framework (CSF) and documented how this set of standards-based controls can support many of the security requirements of manufacturers.