Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
CSF 2.0 Profiles
Templates and useful resources for creating and using both CSF profiles
Videos
Latest Updates
- On May 30, 2025, ISO/IEC-27001:2022-to-Cybersecurity-Framework-v2.0 Informative Reference Details (status: final) was posted to the NIST OLIR (Online Informative References) catalog.
- On April 28, 2025, the CSF 2.0 is now available in Mandarin. All translations can be found on the Translations of NIST Cybersecurity and Privacy Resources page.
- On April 18, 2025, the CSF 2.0 is now available in Thai. All translations can be found on the Translations of NIST Cybersecurity and Privacy Resources page.
- On April 8, 2025, the Department for Science, Innovation & Technology in the United Kingdom (UK) published a mapping of the UK Cyber Governance Code of Practice to the NIST Cyber Security Framework (CSF). This mapping document is for boards, directors and Chief Information Security Officers (or equivalent) and will help understand the Cyber Governance Code of Practice.
- On April 7, 2025, Boise State University’s Office of Information Technology announced they are adopting the NIST CSF to boost research capacity—“a significant step that enhances the university’s ability to compete for sponsored projects requiring controlled data management (e.g., covered defense information, protected health information) and reinforces its commitment to cybersecurity excellence.”
Contacts
For further information and/or questions about the Cybersecurity Framework
-
CONTACT: