How NIST Cybersecurity Framework 2.0 Tackles Risk Managemen
Security Intelligence, Monday, September 18,2023
The NIST Cybersecurity Framework 2.0 (CSF) is moving into its final stages before its 2024 implementation. After the public discussion period to inform decisions for the framework closed in May, it's time to learn more about what to expect from the changes to the guidelines.
The updated CSF is being aligned with the Biden Administration's National Cybersecurity Strategy, according to Cherilyn Pascoe, senior technology policy advisor with NIST, at the 2023 RSA Conference. This sets up the new CSF to build risk management strategies.
When used as a risk management resource, the CSF can be applied in the context of the National Cybersecurity Strategy's five pillars, Pascoe said.