all InfoSec news
NIST Cybersecurity Framework 2.0
Schneier on Security www.schneier.com
NIST has released version 2.0 of the Cybersecurity Framework:
The CSF 2.0, which supports implementation of the National Cybersecurity Strategy, has an expanded scope that goes beyond protecting critical infrastructure, such as hospitals and power plants, to all organizations in any sector. It also has a new focus on governance, which encompasses how organizations make and carry out informed decisions on cybersecurity strategy. The CSF’s governance component emphasizes that cybersecurity is a major source of enterprise risk that senior …
beyond critical critical infrastructure csf csf 2.0 cybersecurity cybersecurity strategy focus framework goes governance hospitals implementation infrastructure national national cybersecurity national cybersecurity strategy nist nist cybersecurity framework organizations plants power power plants protecting scope sector strategy version