Just over a decade ago, President Barack Obama tasked the National Institute for Standards and Technology (NIST) with constructing a cybersecurity framework to fortify the resilience of U.S.’ critical infrastructure against cyberattacks. To accomplish this, NIST collaborated with the private sector to pinpoint industry best practices. Until recently, this framework had been updated solely once in 2018, under the label of version 1.1.
NIST’s latest update to the Cybersecurity Framework didn’t shock many in the cybersecurity sector. Nonetheless, it echoes many of the cutting-edge risks that organizations have to navigate, whether due to shifts in cyber liability or the advent of new technologies.