News

Compliance Corner: NIST CSF 2.0 Released!

  • 29 February 2024
  • 1 reply
  • 41 views

Userlevel 2
Badge


 

T4JJPJLD1lIcWnS3lOPbADI88Z-3uNqRgNt1JK8olVxPImaleuaUiQnYTs2EPZ2RCcYpAyV9sYQrvLfxhH5imTQYwk1JKX4tIdU2-6TEoyYhnTMD2N_GbZBIoM9eHmb9vnBOSP6vihGii68vpAr5FKQ

The first version of NIST’s Cybersecurity Framework aka NIST CSF was released in 2014 and has become enormously popular with businesses and organizations of all sizes. In fact, it is a top 5 framework within ControlMap’s MSP community alongside CIS, SOC 2, ISO 27001, and CMMC/NIST 800-171. The appeal of NIST CSF is its logical approach to Cybersecurity with control objectives organized into 5 easy to understand functional groups:

 

“Identify” →  “Protect” →  “Detect” →  “Respond” →  “Recover”

 

Now a newly introduced sixth functional group added to NIST CSF 2.0 is “Govern,” focusing specifically on Governance.

You’ll likely find NIST CSF requested by small- and mid-sized government agencies such as water authorities, city/state/county departments, and Port Authorities, among other critical infrastructure organizations and their vendors. Private-sector organizations are also looking to align with insurance requirements or well-recognized Federal standards.

ControlMap will continue to support NIST CSF 1.1, but look for the NIST CSF 2.0 update, arriving in March 2024!

 

Some reference links:

https://www.nist.gov/news-events/news/2024/02/nist-releases-version-20-landmark-cybersecurity-framework

https://www.csoonline.com/article/1310046/nist-releases-expanded-2-0-version-of-the-cybersecurity-framework.html 

https://www.darkreading.com/ics-ot-security/nist-releases-cybersecurity-framework-2-0 

 


1 reply

Badge

Great content, Dan!  

Reply