The NIST Cybersecurity Framework changed the way we think about security. Will NIST’s Privacy Framework have the same effect?
Happy fifth anniversary to the NIST Cybersecurity Framework.
When it was issued in February 2014, the goal of the Cybersecurity Framework was to address potential threats against the critical infrastructure. Today, as Under Secretary of Commerce for Standards and Technology and NIST Director Walter G. Copan, said on the NIST blog, “NIST is committed to ensuring that even more organizations, especially smaller companies, know about and are able to use the Cybersecurity Framework to help strengthen the security of their systems, operations and data, and to make wise, cost-effective choices to mitigate cybersecurity and privacy risks.”
It’s clear that the initial mission of the Cybersecurity Framework has shifted over the years. But how has the cybersecurity landscape changed over that time period and how has it impacted the way we approach cybersecurity?
The Gold Standard
When the NIST Cybersecurity Framework was introduced, large-scale attacks were gaining more visibility. CryptoLocker ransomware had hit just months earlier. These attacks put…