The NIST Cybersecurity Framework
Data Strategy, Security & Privacy attorney Mark Francis authored an article for Practical Law on the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF). The piece covers the CSF's development, structure and purpose, its relationship with federal and state laws and recommendations on implementing its approach. Additionally, Mr. Francis delves into NIST's risk-based methodology for creating, updating and evaluating information security programs, offering guidance and resources for applying the CSF effectively.
READ: The NIST Cybersecurity Framework (Subscription required)