The National Institute of Standards and Technology’s Cybersecurity Framework is being revised nearly 10 years after its initial release.
NIST on Tuesday published a draft of Cybersecurity Framework 2.0 in an effort to adapt to the changing landscape of cyber defense.
The new version incorporates feedback from a request for information issued by the institute in February 2022. It retains key attributes of the framework, while providing additional guidance about evolving ransomware threats and supply chain risks stemming from online vulnerabilities.
Extending its scope beyond critical infrastructure, the latest edition attempts to cater to all types and sizes of organizations. CSF 2.0 now has six main functions: to identify, protect, detect, respond, recover and—the newest addition—govern.
The draft is open to public comment until Nov. 4, with a finalized version to be released in early 2024.
Related Articles
The United States’ review of the AUKUS security partnership is expected to conclude this fall, Axios reported Wednesday. Led by Pentagon policy chief Elbridge Colby, the review is examining how the trilateral agreement, which began under the Biden administration, aligns with the priorities of the Trump administration. Colby previously voiced skepticism over how U.S. resources are allocated under AUKUS, though he also said Washington should “do everything we can to make this work.” Learn about the latest AUKUS trilateral agreement developments at the Potomac Officers Club’s 2025 Navy Summit, where maritime leaders and Navy experts will address the most critical
The U.S. Army has issued an organization-wide memo to guide the optimization of systems critical to operations. Signed by Leonel Garciga, the service’s chief information officer and a two-time Wash100 winner, the Defense Business System, or DBS, Determination and Implementation Guidance offers clarifications, ensures accountability and enhances governance of the Army’s IT infrastructure. What Is DBS? A DBS is an IT system being used within the Department of Defense to support core business operations, including financial management, budgeting, planning, contracting, logistics, and human resources training and management. It does not cover systems that are utilized for military, intelligence and national
The Catalyst Accelerator has named the six small businesses that will participate in its directed energy and electromagnetic warfare cohort. From August to November, the cohort will meet every two weeks to collaborate with subject matter experts and engage with government and commercial navigators to build connections and develop technologies for the warfighter. The cohort, The Catalyst Accelerator’s 15th overall, is the first to be executed in partnership with the U.S. Space Force’s Space Security and Defense Program. “The Space Security and Defense Program is excited to see such a diverse set of technologies in the Electromagnetic Warfare and Directed