The National Institute of Standards and Technology just released v1.1 of the Framework for Improving Critical Infrastructure Cybersecurity. The Cybersecurity Framework, "NIST CSF" or "Framework" as it's called is a set of cyber security best practices and guidelines for critical infrastructure organizations, but its popularity has skyrocketed within all sectors even outside of energy, telecom, and others. The Framework is flexible and has the ability to be adopted by organizations of any size voluntarily, and has proven to be popular enough to have rapid adoption even in its first version.
The Under Secretary of Commerce for NIST, Walter Copan, noted "From the very beginning, the Cybersecurity Framework has been a collaborative effort involving stakeholders from government, industry, and academia. The impact of their work is evident in the widespread adoption of the framework by organizations across the United States, as well as internationally."
Additionally, the U.S. Secretary of Commerce Wilbur Ross noted that "The voluntary NIST Cybersecurity Framework should be every company's first line of defense. Adopting version 1.1 is a must do for all CEOs."
According to NIST "his second draft update aims to clarify, refine, and enhance the Cybersecurity Framework, amplifying its value and making it easier to use. This latest draft reflects comments received to date, including those from a public review process launched in January 2017 and a workshop in May 2017."
Want to know how to easily adopt the Framework? Check out our NIST Cybersecurity Framework Guide and CyberStrong for NIST CSF.....