Stakeholders call for more flexibility on supply chain issues in cyber framework update, additional mappings

The National Institute of Standards and Technology should consider how to harmonize its cybersecurity framework with other standards and help improve communication with vendors down the supply chain, industry participants said on a panel at NIST’s CSF 2.0 workshop.

Paul Eisler of USTelecom emphasized how the focus should be on a “risk-based approach,” while recognizing that each sector using the framework is a little different. Eisler participated in the last panel at the CSF 2.0 workshop on Wednesday, addressing...