NIST-CYBERSECURITY-FRAMEWORK-V2
v2 Govern/Identify/Protect/Detect/Respond/Recover cyber framework.
Definition
CSF v2 adds the Govern function (Govern: Roles & Responsibilities, Risk Management Strategy, Cybersecurity Supply Chain Risk Management). 23 categories, 106 subcategories. Voluntarily adopted by 100+ countries. Coupled with Implementation Tiers (Partial → Adaptive) and Profiles (current/target/community).
Origin
CSF v1.0 published February 2014 ; v1.1 April 2018 ; v2.0 February 2024.
Example in context
A French SME adopts CSF v2 to structure its cyber strategy mapping it to its NIS2 obligations.
Related terms
- SP 800-53 — supporting controls.