NIST Releases Major New Version of Cybersecurity Framework

By

This is the framework’s first major update since 2014.

The National Institute of Standards and Technology (NIST) has released a major new version of the Cybersecurity Framework (CSF), its widely used guidelines document for reducing cybersecurity risk.

According to the announcement, the 2.0 edition now “explicitly aims to help all organizations – not just those in critical infrastructure, its original target audience – to manage and reduce risks.”

The framework includes an array of resources to help organizations navigate the guidelines, including:

The CSF 2.0’s expanded scope also has a “new focus on governance, which encompasses how organizations make and carry out informed decisions on cybersecurity strategy.

The CSF’s governance component emphasizes that cybersecurity is a major source of enterprise risk that senior leaders should consider alongside others such as finance and reputation.”
Learn more at NIST.
 
 
 

 
 
 

03/06/2024

Related content

  • NIST Releases Draft of Cybersecurity Security Framework v2.0
  • Understanding Cybersecurity Maturity Model Certification
    United States Cybersecurity Maturity Model Certification will be required by mid-2023 to handle controlled unclassified information and win federal contracts, but it can also help minimize business risk and keep information out of the hands of adversaries.
  • News for Admins
    In the news: NIST Updates Cybersecurity Framework; Poor Cloud Security Practices Put Organizations at Risk; ORNL and NOAA Launch New Supercomputer for Climate Research; DOE Envisions New High Performance Data Facility; VMware Updates Tanzu with New Security Features; Microsoft Launches AI-Powered Security Copilot; IBM Deploys First Quantum Computer Dedicated to Healthcare Research; LPI Announces IT Security Essentials Certification
  • News for Admins
    In the news: US Agencies Issue Quantum-Readiness Recommendations; Bitwarden Secrets Manager; IBM X-Force Releases Detection and Response Framework for Managed File Transfers; National Strategy to Expand US Cyber Workforce; SEC Adopts New Rules for Disclosure of Cybersecurity Incidents; Canonical Announces Real-Time Ubuntu for Intel Core; EU-US Data Privacy Framework Ensures Safe Data Transfers; IEEE Releases New Standard for LiFi Communications; EU Health Sector Security Risks; and JupyterLab 4.0.
  • NIST Releases Open Source Tool for Assessing Risk of AI Models
comments powered by Disqus