New guidance expands the framework to consider organizations beyond critical infrastructure; it also addresses governance and supply chain cybersecurity.

Dark Reading, Staff & Contributors

February 29, 2024

1 Min Read
ORKA KISS VIA ALAMY STOCK

After several years of deliberation, the National Institute for Standards and Technology (NIST) has released its Cybersecurity Framework 2.0.

The new framework builds on its long-standing, cyber-risk-reducing recommendations to include the concerns of organizations outside of its initial focus on critical infrastructure.

NIST released its first CSF in 2014, at the direction of a presidential executive order to help organizations, specifically critical infrastructure, mitigate cybersecurity risk. The CSF 2.0 builds on the existing five basic functions (Identify, Protect, Detect, Respond, and Recover) and has been updated to include a sixth, Govern. NIST's CSF 2.0 also addresses supply chain risks.

Read the Full Article on Dark Reading

About the Author(s)

Dark Reading

Staff & Contributors

Dark Reading: Connecting The Information Security Community

Long one of the most widely-read cybersecurity news sites on the Web, Dark Reading is also the most trusted online community for security professionals. Our community members include thought-leading security researchers, CISOs, and technology specialists, along with thousands of other security professionals.

Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.

You May Also Like


More Insights