NIST CSF 2.0
Your essential introduction to managing cybersecurity risks
Published on 27. February 2025
Book
Paperback/Softback
94 pages
978-1-78778-570-0 (ISBN)
Description
A concise introduction to the NIST CSF 2.0
The NIST CSF (Cybersecurity Framework) 2.0 is designed to protect organizations from cyber attacks. Although the CSF was developed to help US organizations involved in infrastructure to systematically organize their critical activities and ensure they remain up to date, Version 2.0 states that "The CSF is designed to be used by organizations of all sizes and sectors, including industry, government, academia, and nonprofit organizations, regardless of the maturity level of their cybersecurity programs." NIST 2.0 is an effective and flexible framework that is well-known across the US, and increasingly across the rest of the world. It also aligns closely with ISO 27001 and ISO 22301, and all three standards can operate concurrently.
This book will help you understand how to:
Begin implementing the NIST CSF 2.0 in your organization
Build a cybersecurity program, adapt an existing one, or review existing security practices
Integrate the NIST CSF 2.0 with other frameworks such as ISO 27001 and ISO 22301
Organizations that comply with the NIST CSF 2.0, ISO 27001, and ISO 22301 demonstrate their commitment to cybersecurity to current and prospective stakeholders.
The NIST CSF (Cybersecurity Framework) 2.0 is designed to protect organizations from cyber attacks. Although the CSF was developed to help US organizations involved in infrastructure to systematically organize their critical activities and ensure they remain up to date, Version 2.0 states that "The CSF is designed to be used by organizations of all sizes and sectors, including industry, government, academia, and nonprofit organizations, regardless of the maturity level of their cybersecurity programs." NIST 2.0 is an effective and flexible framework that is well-known across the US, and increasingly across the rest of the world. It also aligns closely with ISO 27001 and ISO 22301, and all three standards can operate concurrently.
This book will help you understand how to:
Begin implementing the NIST CSF 2.0 in your organization
Build a cybersecurity program, adapt an existing one, or review existing security practices
Integrate the NIST CSF 2.0 with other frameworks such as ISO 27001 and ISO 22301
Organizations that comply with the NIST CSF 2.0, ISO 27001, and ISO 22301 demonstrate their commitment to cybersecurity to current and prospective stakeholders.
More details
Language
English
Place of publication
Ely
United Kingdom
Target group
Professional and scholarly
Dimensions
Height: 198 mm
Width: 129 mm
Thickness: 7 mm
Weight
161 gr
ISBN-13
978-1-78778-570-0 (9781787785700)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Classification
Persons
Andrew Pattison is the global head of GRC and PCI consultancy at GRC International Group. He has been working in information security, risk management, and business continuity since the mid-1990s, helping large international organizations across many sectors. Andrew is a certified auditor, as well as holding CISM (R) and CRISC (R) certifications. He has provided extensive training in multiple GRC fields and is an approved APMG trainer.
Content
Introduction
Chapter 1: Aims of the framework
Chapter 2: Framework core
Chapter 3: CSF implementation resources
Chapter 4: Categories in detail
Chapter 5: Risk management
Chapter 6: Implementing the framework
Chapter 7: Alignment with other frameworks
Glossary
Further reading
Chapter 1: Aims of the framework
Chapter 2: Framework core
Chapter 3: CSF implementation resources
Chapter 4: Categories in detail
Chapter 5: Risk management
Chapter 6: Implementing the framework
Chapter 7: Alignment with other frameworks
Glossary
Further reading