First published in 2014, the NIST CSF (National Institute of Standards and Technology Cybersecurity Framework) encompasses a set of voluntary cybersecurity risk management tools and practices to be used by the private and public sector. Its goal is to provide a “cost-effective means for critical infrastructure to identify, assess and manage cybersecurity risk.”

Recently, I spoke with a diverse and engaged group of information security leaders at a Fraud & Prevention Summit in NYC about the NIST CSF. Attendees came from a range of industries including financial services, healthcare, legal and government. The conversation revealed common challenges and hopes around how NIST CSF can help improve an organization’s security posture.

Register or login for access to this item and much more

All Information Management content is archived after seven days.

Community members receive:
  • All recent and archived articles
  • Conference offers and updates
  • A full menu of enewsletter options
  • Web seminars, white papers, ebooks

Don't have an account? Register for Free Unlimited Access