Inside Cybersecurity

February 16, 2025

Daily News

NIST framework veterans review changes in CSF 2.0 update including governance function, supply chain content

By Sara Friedman / February 27, 2024

NIST’s update to the cybersecurity framework, known as “CSF 2.0,” is an evolution 10 years in the making of work to help organizations understand risks and incorporate ways to address new challenges, according to framework veterans who were involved in the early days of the original framework’s development.

The framework was crafted by NIST in 2013-2014 under a requirement from an Obama-era executive order. The agency held workshops to gather stakeholder feedback around the country and published the first draft...


Log in to access this content.


Not a subscriber? Sign up for 30 days free access to exclusive news and analysis on cybersecurity regulations and more.