NIST CSF 2.0 : your essential introduction to managing cybersecurity risks

Includes bibliographical references.

The NIST CSF (Cybersecurity Framework) 2.0 is designed to protect organisations from cyber attacks. Although the CSF was developed to help US organisations involved in infrastructure to systematically organise their cyber security activities and ensure they remain up to date, Version 2.0 states that “The CSF is designed to be used by organizations of all sizes and sectors, including industry, government, academia, and nonprofit organizations, regardless of the maturity level of their cybersecurity programs.”Unlike many similar cyber security frameworks, the CSF does not specify the measures an organisation should use to secure its systems or develop its cyber security programme.

Instead, it focuses on cyber security outcomes without specifying what must be done to achieve them, relying on cyber security risk assessment and a wide range of examples to derive appropriate and cost-effective controls that suit the business. This flexibility is a key reason for the CSF's ongoing popularity. This book will help you understand how to: begin implementing the NIST CSF 2.0 in your organisation; build a cyber security programme, adapt an existing one or review existing security practices; and integrate the NIST CSF 2.0 with other frameworks such as ISO 27001 and ISO 22301.[Publisher's text]

112142 characters