NIST Cybersecurity Framework (CSF) 2.0
The NIST Cybersecurity Framework (CSF) 2.0 for organizations to manage and reduce their cybersecurity risks to improve cybersecurity program NIST CSF 2.0 framework provides organizations with a more comprehensive and adaptable approach to cybersecurity. It emphasizes the importance of risk-informed decision-making, supply chain risk management, and the integration of cybersecurity into broader enterprise risk management practices.
NIST CSF 2.0
- Govern: The organisation cybersecurity risk management strategy, expectations, and policy are established, communicated, and monitored.
- Identify: Cataloguing critical assets, data, and systems.
- Protect: Implementing safeguards to deter and mitigate cyberattacks.
- Detect: Employing mechanisms to identify and analyse suspicious activity.
- Respond: Establishing a coordinated response plan to contain and address cyber incidents.
- Recover: Developing a comprehensive strategy for restoring systems and data after an attack
Implementation Approach
- Assessment and Planning
- Risk Management
- Implementation and Improvement
- Monitoring & Improvement
NIST CSF 2.0 Assessment
- Assess the NIST Implemented Strategy
- Assess the vulnerability scanning results
- Assess the policies, procedures, Assets and risk assessments
- Assess the Risk Treatment
- NIST CSF audit Assessment