Cyber Brief: NIST Framework for Critical Infrastructure Cybersecurity

From the Vault

National Institute of Standards and Technology, Cybersecurity Framework Workshop 2017 Summary, July 21 2017, Unclassified.

This document summarizes the findings of a May workshop on the draft cybersecurity framework.

National Institute of Standards and Technology, Draft, Framework for Improving Critical Infrastructure Cybersecurity, January 10, 2017. Unclassified.

This framework draft - which consists of core, profile, and implementation tiers - was developed through collaboration between the government and private sector. It is intended to guide cybersecurity activities and the consideration of cybersecurity risks as part of an organization's risk management process.

National Institute of Standards and Technology, Framework for Improving Critical Infrastructure Cybersecurity, April 2016. Unclassified.

This presentation on NIST's framework for improving critical infrastructure cybersecurity includes discussions of, inter alia, the pre-cyber security framework threat landscape, development of the framework, who the framework is intended to provide guidance to, framework components, and industry resources.

National Institute of Standards and Technology, Framework for Improving Critical Infrastructure Cybersecurity, January 2016. Unclassified.

This presentation outlines an adaptable framework for cybersecurity that can be tailored to specific critical infrastructure 'profiles'.

National Institute of Standards and Technology, Framework for Improving Critical Infrastructure Cybersecurity, Version 1.0, February 12, 2014. Unclassified.

This framework was developed in response to President Obama's 2013 executive order on critical infrastructure cybersecurity that called for creation of a voluntary risk-based cybersecurity framework.