NIST releases draft updates to cyber enterprise risk management series aligned with CSF 2.0

The National Institute of Standards and Technology has published proposed updates to a five-volume series focused on cyber enterprise risk management designed to align the publications with version 2.0 of the NIST cybersecurity framework.

“One of the major updates to CSF 2.0 is the focus on cybersecurity governance to highlight the importance of ensuring cybersecurity capabilities support the broader mission through Enterprise Risk Management (ERM). A NIST publication series that helps practitioners better understand the close relationship between cybersecurity and...