Yo, check it—NIST just dropped CSF 2.0, and it's making waves! 🌊 With added governance, it's like cybersecurity meets the boardroom! We all know boardrooms and cybersecurity are like the ultimate frenemies. They're like lovers who can't stand each other, but deep down, they know they need each other to survive. It's a match made in... well, maybe not heaven, but definitely in the digital realm. CSF2.0 is going to reduce the gap on this front for sure! or MAY BE NOT ! ha ha ha

Anyway as usual, some baby questions to take the first steps

What is “Cyber Security Framework” ?

The NIST Cybersecurity Framework is a set of guidelines, best practices, and standards designed to help organizations manage and improve their cybersecurity posture.

Alright that was a bit of bummer , let it me break it down in superhero terms

Cybersecurity Framework is like a treasure map for companies. It gives them step-by-step instructions on how to protect their digital stuff, like their websites and important data, from bad guys who try to break in and cause trouble.

Who is behind “Cyber Security Framework” ?

National Institute of Standards and Technology (NIST), which is a part of the U.S. Department of Commerce is behind this initiative

What is new in 2,0 ?

• Introduces a sixth function “ Govern”

• “Implementation Examples” are a cool addition

• Better “Integration with other frameworks” such as CIS , ISO27001

• Emphasize on “Supply chain security”

Whom does it concern ?

• Executives ( CEO, CTO, COO etc. )

• Cyber security professionals

• Risk managers

• Regulators and policy makers