News for Admins

Tech News

NIST Updates Cybersecurity Framework

Major updates to NIST's Cybersecurity Framework (CSF) are underway, with the new CSF 2.0 expected in 2024.

"Based on stakeholder feedback, in order to reflect the ever-evolving cybersecurity landscape and to help organizations more easily and effectively manage cybersecurity risk, NIST is planning a new, more significant update to the framework: CSF 2.0," NIST says. The framework was initially produced in 2014 and updated to CSF 1.1 in 2018.

NIST plans to seek stakeholder feedback throughout the process, and a discussion draft is now available for review (https://www.nist.gov/system/files/documents/2023/04/24/NIST%20Cybersecurity%20Framework%202.0%20Core%20Discussion%20Draft%204-2023%20final.pdf). "The modifications from CSF 1.1 are intended to increase clarity, ensure a consistent level of abstraction, address changes in technologies and risks, and improve alignment with national and international cybersecurity standards and practices," according to the draft document.

Check out NIST's Journey to CSF 2.0 website (https://www.nist.gov/cyberframework/updating-nist-cybersecurity-framework-journey-csf-20) for the proposed timeline and other information.

Poor Cloud Security Practices Put Organizations at Risk

Many organizations are failing to implement basic cloud security practices and address known vulnerabilities in a timely fashion, according to a new report from Palo Alto Networks' Unit 42.

The Unit 42 Cloud Threat Report , Volume 7 (

Buy this article as PDF

Express-Checkout as PDF

Price $2.95
(incl. VAT)

Buy ADMIN Magazine

SINGLE ISSUES

Print Issues

Digital Issues

 

SUBSCRIPTIONS

Print Subs

Digisubs

 

TABLET & SMARTPHONE APPS

US / Canada

UK / Australia