NIST has begun the process to update the NIST Cybersecurity Framework to keep pace with the evolving cybersecurity landscape. The CSF was originally developed during a year-long, collaborative process where NIST served as a convener for industry, academia, and government stakeholders—and this collaboration continues to be a priority today as NIST proceeds toward CSF 2.0.
The Workshop was a Success! This virtual, collaborative workshop brought together expert panelists and leaders from NIST to:
- Share and learn about organizations’ use of the Cybersecurity Framework, and suggestions for improvements
- Review comments received during a recent NIST Cybersecurity Request for Information (RFI)
- Discuss themes identified during the RFI analysis (with a focus on international, governance, measurement, and supply chain topics)
- Learn what we have planned for the future (and how to get involved)
The NIST Cybersecurity Framework (CSF), first issued in 2014, was developed based on existing standards, guidelines, and practices—and is widely used today around the world. It provides a prioritized, flexible, repeatable, performance-based, and cost-effective approach to managing cybersecurity risk at all levels in an organization and is applicable to organizations of all sizes and sectors. For more information on the update to the Framework, please visit the NIST CSF 2.0 website.
Stay tuned for further announcements by subscribing to receive email notifications about the NIST Cybersecurity Framework here.
Join us on Twitter via @NISTcyber using #CyberFramework with questions and updates.