NIST Cybersecurity Framework 2.0: Difference between revisions
Jump to navigation
Jump to search
No edit summary |
No edit summary |
||
Line 10: | Line 10: | ||
|url=https://doi.org/10.6028/NIST.CSWP.29 | |url=https://doi.org/10.6028/NIST.CSWP.29 | ||
|file=NIST.CSWP.29.pdf | |file=NIST.CSWP.29.pdf | ||
|abstract= | |||
The National Institute of Standards and Technology (NIST) has updated the widely used Cybersecurity Framework (CSF), its landmark guidance document for reducing cybersecurity risk. The new 2.0 edition is designed for all audiences, industry sectors and organization types, from the smallest schools and nonprofits An image of a road with different NIST CSF resources labeled along the pathto the largest agencies and corporations — regardless of their degree of cybersecurity sophistication. Major changes to the document include these: | The National Institute of Standards and Technology (NIST) has updated the widely used Cybersecurity Framework (CSF), its landmark guidance document for reducing cybersecurity risk. The new 2.0 edition is designed for all audiences, industry sectors and organization types, from the smallest schools and nonprofits An image of a road with different NIST CSF resources labeled along the pathto the largest agencies and corporations — regardless of their degree of cybersecurity sophistication. Major changes to the document include these: | ||
*Explicitly aims to help all organizations — not just those in critical infrastructure, its original target audience — to manage and reduce risks. | *Explicitly aims to help all organizations — not just those in critical infrastructure, its original target audience — to manage and reduce risks. | ||
*Updates the CSF’s core guidance and includes a suite of resources to help all organizations achieve their cybersecurity goals, with added emphasis on governance as well as supply chains. | *Updates the CSF’s core guidance and includes a suite of resources to help all organizations achieve their cybersecurity goals, with added emphasis on governance as well as supply chains. | ||
*Is based on the outcome of a multiyear process of discussions and public comments aimed at making the framework more effective | *Is based on the outcome of a multiyear process of discussions and public comments aimed at making the framework more effective | ||
}} |
Revision as of 00:44, March 4, 2024
Paper | |
---|---|
Title | NIST Cybersecurity Framework 2.0 |
Type | report |
Topic | Cybersecurity and Privacy Risk Management |
Publisher | NIST |
Issue | 2024-02-26 |
Date Accessed | 2024-03-01 |
doi | 10.6028/NIST.CSWP.29 |
URL | https://doi.org/10.6028/NIST.CSWP.29 |
File |
The National Institute of Standards and Technology (NIST) has updated the widely used Cybersecurity Framework (CSF), its landmark guidance document for reducing cybersecurity risk. The new 2.0 edition is designed for all audiences, industry sectors and organization types, from the smallest schools and nonprofits An image of a road with different NIST CSF resources labeled along the pathto the largest agencies and corporations — regardless of their degree of cybersecurity sophistication. Major changes to the document include these:
- Explicitly aims to help all organizations — not just those in critical infrastructure, its original target audience — to manage and reduce risks.
- Updates the CSF’s core guidance and includes a suite of resources to help all organizations achieve their cybersecurity goals, with added emphasis on governance as well as supply chains.
- Is based on the outcome of a multiyear process of discussions and public comments aimed at making the framework more effective