NIST Updates Cybersecurity Framework

SecurityFeeds / 16 February 2023 / 0 Comments

ISO 27001 + the NIST CSF model has always been a very good combination of Risk Management and Operational Management security frameworks. CSF is undergoing a revision cycle much like ISO 27001:2002. Here are a few ways to engage (Bruce Schneier blog, NIST CSF landing page and overview of the proposed changes/comments).

Bruce Schneier NIST CSF Blog

https://www.schneier.com/blog/archives/2023/01/nist-is-updating-its-cybersecurity-framework.html

NIST CSF v2.0 Overview of Proposed Changes

https://www.nist.gov/system/files/documents/2023/01/19/CSF_2.0_Concept_Paper_01-18-23.pdf

NIST CSF v2.0 Landing Page

https://www.nist.gov/cyberframework/updating-nist-cybersecurity-framework-journey-csf-20

Replies to the NIST CSF Request for Information - Comments Received for RFI about Evaluating and Improving Cybersecurity Resources: The Cybersecurity Framework and Cybersecurity Supply Chain Risk Management

https://www.nist.gov/cyberframework/comments-received-rfi-about-evaluating-and-improving-cybersecurity-resources

Tags

CSF

Risk Management and Compliance

NIST

About SecurityFeeds

Tim Weil is a Security Architect/IT Security Manager with over twenty five years of IT management, consulting and engineering experience in the U.S. Government and Communications Industry. Mr. Weil's technical areas of expertise include IT Security Management, Enterprise Security Architecture, FISMA Compliance, Identity Management, and Network Engineering. Mr. Weil is a Senior Member of the IEEE and has served in several IEEE positions.

Learn More About Tim

Blog

NIST Updates Cybersecurity Framework

Recent Blog Posts

Tags

About SecurityFeeds