Teacher
Professional
- Messages
- 2,669
- Reaction score
- 819
- Points
- 113
The first major update since 2014 brings many changes and improvements for organizations.
The US National Institute of Standards and Technology (NIST) has released an updated edition of its landmark cybersecurity document, the Cybersecurity Framework (CSF), which has reached version 2.0.
This is the first major update since this document was created in 2014. The updated CSF is intended for a broad audience and covers organizations of all sizes and sectors, from small schools and nonprofits to major corporations and government agencies.
In response to the extensive feedback received on the draft document, NIST expanded the CSF's core recommendations and developed additional resources to enable users to make the most of it.
The new version supports the implementation of the National Cybersecurity Strategy, presented by the White House in March last year, and expands its scope to include governance issues that relate to making and implementing informed decisions in the field of cybersecurity strategy.
The updated CSF includes a new "Governance" function, complementing the previous five key functions: Identification, Protection, Detection, Response, and Recovery. Such measures offer a comprehensive view of the life cycle of cybersecurity risk management.
New resources and tools, such as the Reference Tool in CSF 2.0, simplify the use of the document, allowing users to view, search, and export data from the main recommendations in formats that are easy to understand and process. In addition, a directory of informative links helps organizations compare their current activities with existing CSF guidelines.
NIST also offers the Cybersecurity and Privacy Reference Tool (CPRT), which contains an interconnected set of NIST documents that helps contextualize these resources. CPRT provides ways to communicate these ideas to both technical professionals and senior management, which facilitates coordination at all levels of the organization.
NIST plans to continue improving its resources and make CSF an even more useful tool for a wide range of users. Community feedback will be key in this process.
CSF versions 1.0 and 1.1 have been translated into 13 languages, and NIST expects that CSF 2.0 will also be translated by volunteers around the world, which will enable the use of advanced cybersecurity practices in many countries other than the United States and raise the overall level of digital defense around the world.
NIST's collaboration with the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) over the past 11 years has contributed to the harmonization of many cybersecurity documents, and plans to continue this work emphasize the desire for international consistency and unification of cybersecurity standards.
The US National Institute of Standards and Technology (NIST) has released an updated edition of its landmark cybersecurity document, the Cybersecurity Framework (CSF), which has reached version 2.0.
This is the first major update since this document was created in 2014. The updated CSF is intended for a broad audience and covers organizations of all sizes and sectors, from small schools and nonprofits to major corporations and government agencies.
In response to the extensive feedback received on the draft document, NIST expanded the CSF's core recommendations and developed additional resources to enable users to make the most of it.
The new version supports the implementation of the National Cybersecurity Strategy, presented by the White House in March last year, and expands its scope to include governance issues that relate to making and implementing informed decisions in the field of cybersecurity strategy.
The updated CSF includes a new "Governance" function, complementing the previous five key functions: Identification, Protection, Detection, Response, and Recovery. Such measures offer a comprehensive view of the life cycle of cybersecurity risk management.
New resources and tools, such as the Reference Tool in CSF 2.0, simplify the use of the document, allowing users to view, search, and export data from the main recommendations in formats that are easy to understand and process. In addition, a directory of informative links helps organizations compare their current activities with existing CSF guidelines.
NIST also offers the Cybersecurity and Privacy Reference Tool (CPRT), which contains an interconnected set of NIST documents that helps contextualize these resources. CPRT provides ways to communicate these ideas to both technical professionals and senior management, which facilitates coordination at all levels of the organization.
NIST plans to continue improving its resources and make CSF an even more useful tool for a wide range of users. Community feedback will be key in this process.
CSF versions 1.0 and 1.1 have been translated into 13 languages, and NIST expects that CSF 2.0 will also be translated by volunteers around the world, which will enable the use of advanced cybersecurity practices in many countries other than the United States and raise the overall level of digital defense around the world.
NIST's collaboration with the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) over the past 11 years has contributed to the harmonization of many cybersecurity documents, and plans to continue this work emphasize the desire for international consistency and unification of cybersecurity standards.
