NIST Releases Updated Cybersecurity Framework
Wednesday, April 18, 2018 | Comments

The U.S. Commerce Department’s National Institute of Standards and Technology (NIST) released version 1.1 of its Framework for Improving Critical Infrastructure Cybersecurity, more widely known as the Cybersecurity Framework.

The framework was developed with a focus on industries vital to national and economic security, including energy, banking, communications and the defense industrial base. It has since proven flexible enough to be adopted voluntarily by large and small companies and organizations across all industry sectors, as well as by federal, state and local governments.

“The release of the Cybersecurity Framework Version 1.1 is a significant advance that truly reflects the success of the public-private model for addressing cybersecurity challenges,” said Under Secretary of Commerce for Standards and Technology and NIST Director Walter G. Copan. “From the very beginning, the Cybersecurity Framework has been a collaborative effort involving stakeholders from government, industry and academia. The impact of their work is evident in the widespread adoption of the framework by organizations across the United States, as well as internationally.”

Version 1.1 includes updates on authentication and identity, self-assessing cybersecurity risk, managing cybersecurity within the supply chain and vulnerability disclosure. The changes to the framework are based on feedback collected through public calls for comments, questions received by team members, and workshops held in 2016 and 2017. Two drafts of version 1.1 were circulated for public comment to assist NIST in comprehensively addressing stakeholder inputs.

Later this year, NIST plans to release an updated companion document, the “Roadmap for Improving Critical Infrastructure Cybersecurity,” which describes key areas of development, alignment and collaboration.

“Cybersecurity is critical for national and economic security,” said Secretary of Commerce Wilbur Ross. “The voluntary NIST Cybersecurity Framework should be every company’s first line of defense. Adopting version 1.1 is a must do for all CEOs.”

The framework is here.

Would you like to comment on this story? Find our comments system below.



 
 
Post a comment
Name: *
Email: *
Title: *
Comment: *
 

Comments

No Comments Submitted Yet

Be the first by using the form above to submit a comment!


Magazines in Print







Events
July 2019

25 - 25
Webinar: FirstNet App Catalog: Extending Your Reach

https://register.gotowebinar.com/register/513288711202136331

30 - 30
Webinar: Are Your Mission-Critical Systems Managing You?

https://register.gotowebinar.com/register/3092840846834035212

August 2019

11 - 14
APCO Conference and Expo
Baltimore
https://www.apco2019.org

September 2019

12 - 12
Northern California APCO Vendor Showcase
Roseville, California
www.napco.org/meetings

More Events >

Site Navigation

Close