Cybersecurity Framework

Helping organizations to better understand and improve their management of cybersecurity risk

Identify, Detect, Respond, Protect, and Recover

Credit: N. Hanacek/NIST

This voluntary Framework consists of standards, guidelines, and best practices to manage cybersecurity-related risk. The Cybersecurity Framework’s prioritized, flexible, and cost-effective approach helps to promote the protection and resilience of critical infrastructure and other sectors important to the economy and national security.

Latest Updates

The first draft agenda of the Cybersecurity Risk Management Conference has been published. More sessions will be added to the agenda over time. NIST has begun working with additional speakers on session refinement. Those who submitted speaker nominations for the conference should hear from NIST in the upcoming week.
In just four months since its April 2018 release, V1.1 of the Cybersecurity Framework already has been downloaded over 129,000 times. That compares with approximately 262,000 total downloads of V1.0 over four years!
Registration for the 2018 NIST Cybersecurity Risk Management Conference -- to be held November 7-9, 2018, at the Renaissance Baltimore Harborplace Hotel, in Baltimore, Maryland -- is now open. Sponsored by NIST, the three-day conference is expected to attract leaders from industry, academia, and government at all levels, including international attendees.

To see more Latest Updates click here

Contact

For further information and/or questions about the Cybersecurity Framework

CONTACT:

cyberframework@nist.gov