Becoming a staple in in the management of cybersecurity related risks, this simple framework has shifted the base platform and allowed a new approach to protection and management. Celebrating its 5th year since implementation, the guide has continued to be shaped by various entities to improve quality and versatility.
It was on February 12 of 2014 that the U.S. Department of Commerce’s National Institute of Standards and Technology (NIST) formerly introduced what is now referred to as the “NIST Cybersecurity Framework”. This guide was crafted after a rigorous year involving input from hundreds of various individuals and organizations.
“NIST is committed to ensuring that even more organizations, especially smaller companies, know about and are able to use the Cybersecurity Framework to help strengthen the security of their systems, operations and data, and to make wise, cost-effective choices to mitigate cybersecurity and privacy risks,” said NIST Director Walter G. Copan.
According to NIST, the traction on this model continues to increase as their newly updated version has been downloaded more than 267,000 times. “Overall, the framework has been downloaded more than half a million time since its initial publication in 2014.” They continued, “Although its use is voluntary for the private sector, it became mandatory for all U.S. federal agencies through a 2017 Presidential executive order.”