NIST release CSF 2.0 to help all organisations reduce risk
Anita Skurr
27 February, 2024
Hot off the press: NIST have finalised the first major update of its Cybersecurity Framework (CSF) since its creation in 2014.
According to the NIST announcement, following this update, the framework “now explicitly aims to help all organizations—not just those in critical infrastructure, its original target audience—to manage and reduce risks.”
As part of this, NIST, the National Institute of Standards and Technology at the U.S. Department of Commerce, have updated the core CSF guidance and created a suite of resources “to help all organizations achieve their cybersecurity goals, with added emphasis on governance as well as supply chains.”
“At Firebrand, we have already incorporated the new-look framework into our courses and I have an overview of it in our up-and-coming Protect for Business course (watch this space for the launch!),” said Phil Chapman, the Head of Firebrand Cyber Curriculum.
“The updated NIST framework is pretty good and the resources it uses and refers to are well-accepted. If it's applied correctly, it is a huge benefit.
“Larger enterprises who use the CSF guidance will have already have adopted some of the updates within their internal frameworks and working practices. But the guidance for SMEs and the templates provided are very useful. At Firebrand, we are in front of the curve with this one!
“Our new Protect for Business Course, which I am hoping will go to market very soon, includes a module that deals with the NIST framework and how SMEs can use it to their advantage. You can read more about it in my latest blog,” Phil added.
Fight Cybercrime with Firebrand
For the past 13 years in a row, we’ve been named one of the Top 20 IT Training Companies in the World.
We specialise in accelerated courses that get you certified and back to work at twice the speed.
Perhaps one of them is right for you?