Published originally on February 27, 2024 on SC Magazine.
NIST released its Cybersecurity Framework 2.0 (CFS 2.0) on Monday, introducing a new core structure, resource catalog and overall scope of application to the already widely used resource.
The highly anticipated final version of CFS 2.0 draws from years of collaboration and feedback across industry, academia and government agencies both in the United States and around the world, according to NIST, and includes changes that aim to address continuously evolving cybersecurity risks, needs and technologies.
***
The new framework also benefits from the latest guidance published by NIST and other sources on emerging threats and technologies, such as artificial intelligence; for example, CFS 2.0 can be used along with NIST’s AI Risk Management Framework published in January 2023.
As threats and technology continue to evolve, the “CSF portfolio” maintained by NIST can be updated with additional resources, and NIST encourages the submission of recommended resources to its [email protected] email address.
“Ultimately, the decision to adopt NIST CSF 2.0 depends on individual organizational needs and risk profiles. However, understanding the potential benefits and considering the evolving regulatory landscape makes a strong case for proactive engagement with this updated cybersecurity framework,” Ashley Leonard, CEO of Syxsense, told SC Media.
Read the full story on SC Magazine.
