On 19 January 2023, the National Institute of Standards and Technology (NIST) opened a consultation on its "Cybersecurity Framework 2.0 (CSF) Concept Paper: Potential Significant Updates to the Cybersecurity Framework" until 3 March 2023. NIST wishes to create a CSF 2.0 and requires public comments on the original CSF before drafting CSF 2.0. Additionally, NIST outlined a number of questions relevant to industry groups. In particular, CSF 2.0 wishes to accurately reflect the cybersecurity reality of the US and aims to gather information on whether the potential outlined changes to CSF are sufficient and suitable. The CSF outlines the steps that organisations have to follow to mitigate, resolve, detect and report cyber security risks.
Original source