"What's New in the NIST Cybersecurity Framework 2.0"

The National Institute of Standards and Technology's (NIST) Cybersecurity Framework (CSF) has been updated, and is now aimed at organizations of all sizes. The framework was introduced nearly a decade ago as technical cybersecurity guidance for critical infrastructure interests such as energy, banking, and hospitals. Version 2.0 of the widely used NIST CSF has added a sixth function, govern, to the original framework's five (identify, protect, detect, respond, and recover) for an effective cybersecurity program. Viakoo's CEO, Bud Broomhead, explained that the new NIST update does not just help organizations with basic cybersecurity functions as it extends to other enterprise areas. Expanding the scope of the NIST framework to include all types of organizations acknowledges that all organizations face cyber threats and must have a plan to manage cyber hygiene and incident response. This article continues to discuss the updates and business benefits of CSF 2.0.

Dark Reading reports "What's New in the NIST Cybersecurity Framework 2.0"