Event occurred on: 5-3-2024
NIST Cybersecurity Framework 2.0: Moving Cyber Out of the Silo
Date: May 3, 2024
Time: 10-11am PT / 1-2pm ET
Location: Virtual
Freshfields Partner Beth George will be speaking at PLI’s upcoming One-Hour Briefing “NIST Cybersecurity Framework 2.0: Moving Cyber Out of the Silo”.
Share this event with your colleagues and connections on social media.
The National Institute for Standards and Technology (NIST) released an update to its initial cybersecurity framework in the form of NIST CSF 2.0. NIST 2.0 integrates the comprehensive view of managing cyber risk included in NIST 1.0, and adds exponentially by expanding in both breadth and depth. Its scope has been broadened beyond protecting critical infrastructure to include all business sizes, industries, and cybersecurity maturity levels. And, it has an added core function beyond the initial five included in NIST 1.0 (identify, protect, detect, respond, and recover) named “govern.” These expansions are part of a more general recognition that cybersecurity no longer belongs in the silo of the IT department or with the CISO, but must be part of the overall enterprise risk management process that senior business leaders, and the counsel who advise them, consider and evaluate.
Topics to be covered include:
- Introduction to NIST Cybersecurity Framework
- NIST 1.0 history, organization, and concerns
- NIST 2.0 expansion and key changes
- Expanded scope and frameworks for additional businesses
- Addition of sixth core function, “Govern,” and restructuring of other functions
- Profiles and Quick Start Guides
- How to use the framework to analyze and reduce cybersecurity risk
- NIST and board oversight
- NIST and the SEC Cybersecurity Rules