CSOonline

Using the NIST Cybersecurity Framework to address organizational risk

NIST's CSF, used with other guidance, can help map risk to actual threats and better comply with security mandates such as the U.S.'s cybersecurity executive order. The U.S. federal government has ...
CSOonline

NIST Cybersecurity Framework update comments highlight a gamut of needed changes

In late February, the National Institute of Standards and Technology (NIST) issued a request for information (RFI) to evaluate and enhance its Cybersecurity Framework, or CSF, first produced in 2014 ...
Reuters

The NIST Cybersecurity Framework

The CSF does not directly form the basis for any formal regulations or regulatory action. However, it heavily influences evolving federal and state regulations and standards, and there is some ...