NIST Releases Cybersecurity Framework 2.0
New guidance expands the framework to consider organizations beyond critical infrastructure; it also addresses governance and supply chain cybersecurity.
After several years of deliberation, the National Institute for Standards and Technology (NIST) has released its Cybersecurity Framework 2.0.
The new framework builds on its long-standing, cyber-risk-reducing recommendations to include the concerns of organizations outside of its initial focus on critical infrastructure.
NIST released its first CSF in 2014, at the direction of a presidential executive order to help organizations, specifically critical infrastructure, mitigate cybersecurity risk. The CSF 2.0 builds on the existing five basic functions (Identify, Protect, Detect, Respond, and Recover) and has been updated to include a sixth, Govern. NIST's CSF 2.0 also addresses supply chain risks.
About the Author(s)
You May Also Like
Smart Service Management
June 4, 2024Tales of a Modern Data Breach: The Rise of Mobile Attacks
June 11, 2024The CIOs Guide to Enhancing GRC in 2024
June 20, 2024