NIST Cybersecurity Framework (CSF) is a policy framework of computer security guidance for how private sector organizations in the United States can assess and improve their ability to prevent, detect, and respond to cyber attacks. According to the National Institute of Standards and Technology, NIST CSF provides a high level taxonomy of cybersecurity outcomes and a methodology to assess and manage those outcomes. NIST CSF is recognized and implemented worldwide since it helps a wide range of businesses and organizations to take a more proactive approach to risk management. The latest version of NIST CSF, Version 1.1, become publicly available on April 16, 2018. It’s compatible with Version 1.0 but includes simplified guidance on performing self-assessments and additional details on supply chain risk management and guidance on how to interact with supply chain stakeholders.
For more information on operationalizing the NIST Cybersecurity Framework, visit our NIST CSF Solution page? You can also read up on how you can implement NIST CSF: A 4-Step Journey to Cybersecurity Maturity.