NIST CSF 2.0: NEW CYBERSECURITY FRAMEWORK FROM THE NATIONAL INSTITUTE OF STANDARDS AND TECHNOLOGY OF THE UNITED STATES

Authors

DOI:

https://doi.org/10.18372/2225-5036.30.18606

Keywords:

CSF 2.0, cybersecurity, NIST, organizational profiles, framework, cyber threats, information security

Abstract

This article provides an in-depth analysis of the Cybersecurity Framework version 2.0, introduced by the National Institute of Standards and Technology (NIST) in early 2024. CSF 2.0 is designed to facilitate effective management and mitigation of cybersecurity risks for diverse organizations, regardless of their size and industry. The article explores key components of the framework, such as the Core (CSF Core), Organizational Profiles (CSF Organizational Profiles), Security Tiers (CSF Tiers), and provides insights into their utilization for enhancing organizational cybersecurity practices. Emphasis is placed on the flexibility of the framework, allowing organizations to adapt their approaches to cybersecurity management according to their unique risks and needs. CSF 2.0 is considered a crucial tool aimed at promoting cybersecurity improvement across all organizational levels, irrespective of their technical maturity. The article also offers a comprehensive overview of the potential uses of CSF resources for enhancing cybersecurity practices and underscores the importance of continuously refining cybersecurity management strategies to effectively counter growing cyber threats.

References

NIST Releases Version 2.0 of Landmark Cybersecurity Framework [Електронний ресурс]. Режим доступу до ресурсу: https://www.nist.gov/news-events/ news/ 2024 / 02 / nist-releases-version-20-landmark-cybersecurity-framework.

The NIST Cybersecurity Framework (CSF) [Електронний ресурс]. Режим доступу до ресурсу: https: // nvlpubs.nist.gov / nistpubs / CSWP / NIST. CSWP. 29.pdf.

CSF 2.0 Quick Start Guides [Електронний ресурс]. Режим доступу до ресурсу: https://www.nist. gov/quick-start-guides.

CSF 2.0 Organizational Profiles [Електронний ресурс]. Режим доступу до ресурсу: https://nist. gov/profiles-0.

CSF 2.0 Informative References [Електронний ресурс]. Режим доступу до ресурсу: https://www. nist.gov/informative-references.

Downloads

Published

2024-05-15

How to Cite

Zhylin, A., Beliavsky, V., & Bakalynsky, O. (2024). NIST CSF 2.0: NEW CYBERSECURITY FRAMEWORK FROM THE NATIONAL INSTITUTE OF STANDARDS AND TECHNOLOGY OF THE UNITED STATES. Ukrainian Scientific Journal of Information Security, 30(1), 73–76. https://doi.org/10.18372/2225-5036.30.18606

Issue

Vol. 30 No. 1 (2024): Ukrainian Scientific Journal of Information Security

Section

Cybersecurity & Critical Information Infrastructure Protection (CIIP)

License

The scientific journal "Ukrainian Scientific Journal of Information Security" adheres to the principles of open science and provides free, free and permanent access to all published materials. The goal of the policy is to increase the visibility, citation and impact of the results of scientific research in the field of information security. The journal works according to the principles of Open Access and does not charge a fee for access to published articles.

All articles are published in Open Access under the Creative Commons Attribution 4.0 International (CC BY 4.0) license.

Copyright

Authors who publish their works in the journal Ukrainian Scientific Journal of Information Security:

  • retain the copyright to their publications;

  • grant the journal the right of first publication of the article;

  • agree to the distribution of their materials under the CC BY 4.0 license;

  • have the right to reuse, archive, and distribute their works (including in institutional and subject repositories), provided that proper reference is made to the original publication in the journal.