Cyber policy vet Anderson urges focus on alignment, voluntary approach in cyber framework 2.0 effort

Attorney Carl Anderson, a veteran of multiple initiatives around the NIST cybersecurity framework, says plans to develop “CSF 2.0” should focus on four areas including reaffirming its voluntary nature, aligning with other cyber tools, and expanding use across entities and sectors.

The National Institute of Standards and Technology has said it will issue a request for information early in 2022 on updating the framework, which was developed in 2013-14 and updated in 2018.

Anderson is managing partner at Rock...