NIST CSF 2.0

Everything we know about NIST CSF 2.0 and how that impacts your organization 

WHAT IS NIST CSF 2.0?

The NIST Cybersecurity Framework is a set of guidelines for mitigating organizational cybersecurity risks, published by the U.S. National Institute of Standards and Technology based on existing standards, guidelines, and practices. 

The goal of NIST is to help organizations better understand, manage, and reduce their cyber risk while protecting their networks and data. The White House Cybersecurity Strategy calls for organizations across America to align themselves with the NIST CSF. 

WHAT'S NEW IN NIST CSF 2.0?

  • In the Identify Function, there is a new Continuous Improvement category in the identify function. 
  • In the Protect Function, there is a new effort to leverage the combination of people, process, and technology to secure assets. 
  • In the Protect Function, there is a new Resilience of Technology Infrastructure Category.   
  • In the Respond and Recover Functions, there are new categories aimed at cybersecurity incident response management, including the importance of incident forensics. 
  • The new NIST CSF 2.0 now has supply chain risk management outcomes.  
    NIST 2.0 Graphic

WHEN WILL 2.0 BE RELEASED? 

NIST CSF 2.0 is scheduled for release in the winter of 2024.

HOW DOES THIS IMPACT MY ORGANIZATION?

All Critical Infrastructure organizations, such as governments and healthcare, will have to align to the new NIST CSF 2.0. You'll want to make sure your team is ready to embrace these changes to meet regulatory and compliance standards. You can access our NIST CSF Risk Assessment and Budgeting Tool at the button below.  

Contact us for help with
NIST CSF 2.0 preparation

How do I sign up for help from Critical Insight?

If your organization is interested in securing help from Critical Insight, please fill out the form or email info@criticalinsight.com to secure your spot.