December 4, 2022
Stakeholders see need for improved alignment between CISA’s ‘performance goals’ and NIST cyber framework
Cyber leaders who have worked extensively with the NIST cybersecurity framework see significant gaps in alignment between CISA’s new “cybersecurity performance goals” and the foundational NIST publication that served as jumping off point for the cyber agency’s latest guidance to industry.
The CISA CPG publication released last week builds off the cybersecurity framework, but misses the mark on addressing all of the CSF’s five overarching functions – Identify, Protect, Detect, Respond and Recover, according to stakeholders.
“This definitely needs...