Cloud Computing

Hear the Latest on NIST’s Cybersecurity Framework 2.0 (and Beyond)


What better time to discuss the breadth and impact of the National Institute of Standards and Technology (NIST) on enhancing global security resiliency than as they begin their second half-century of focus on cybersecurity?  The 50th anniversary of cybersecurity at NIST celebrations is winding down, and it is clear that NIST has established itself as one of the world’s premier organizations in helping safeguard our cybersecurity digital landscape.

NIST Cybersecurity Framework (CSF) 2.0

And what better way to highlight NIST’s impact than to discuss the impending arrival of their Cybersecurity Framework 2.0.  Arguably one of their most impactful cybersecurity efforts, the current NIST Cybersecurity Framework (Version is 1.1) and associated cybersecurity mission best practices are used by all 16 Critical Infrastructure Sectors in the United States, more than 20 States, and dozens of countries worldwide.

NIST’s Cybersecurity Framework is now being expanded beyond its current emphasis on traditional critical infrastructures and industries into a tool that can help to more broadly address cybersecurity risk and help better protect the “critical infrastructures” of every organization’s and business’ mission outcomes.

Cisco recently had the pleasure of sitting down with Cheri Pasco, Senior Technology Policy Advisor at NIST and their Cybersecurity Framework Program Lead for CSF 2.0 for one of our “Coffee and Conversations” podcasts hosted by Danny Vicente.  My colleague, Peter Romness, a Cybersecurity Principal in our CISO Advisors Office, and I had what I think you’ll find to be a stimulating, informative, and FUN conversation about the key changes and impacts that CSF 2.0 is expected to bring (and, yes, I said FUN)!

Some of the highlights of our CSF 2.0 “Coffee and Conversation” podcast include:

  • Key changes that are being made to more effectively address cybersecurity risk for all organizations and businesses;
  • Discussion of the expanded supply chain risk focus; and
  • Expanding the CSF Core to add “Govern” as a Function can help drive the needed support from an organization’s leadership to produce the expected outcomes across the organization’s processes, people, and technologies.

Listen to our NIST “Coffee and Conversations” podcast and stay tuned over the coming year for Cisco’s perspectives on enhanced security and operational resiliency and the mission and business outcomes they help enable.

Also available on Apple Podcasts and Spotify.

Additional resources:

Share: