"After reviewing more than a year’s worth of community feedback, NIST has released a Draft of The NIST Cybersecurity Framework 2.0 for public comment! This draft represents a major update to the CSF—a resource first released in 2014 to help organizations reduce cybersecurity risk. The draft update reflects changes in the cybersecurity landscape and makes it easier to put the CSF into practice for all organizations. The CSF 2.0 draft reflects several major changes, including: an expanded scope, the addition of a sixth function, Govern, and improved and expanded guidance on implementing the CSF—especially for creating profiles."
https://www.nist.gov/news-events/news/2023/08/nist-drafts-major-update-its-widely-used-cybersecurity-framework
https://www.nist.gov/news-events/news/2023/08/nist-drafts-major-update-its-widely-used-cybersecurity-framework
CSRC | NIST
The NIST Cybersecurity Framework 2.0 (Draft)
The NIST Cybersecurity Framework 2.0 provides guidance to industry, government agencies, and other organizations to reduce cybersecurity risks. It offers a taxonomy of high-level cybersecurity outcomes that can be used by any organization — regardless of…
Руководство по "теневой" ит-инфраструктуре от Британского ФСТЭКа (то чего нет в документах вашей организации но работает)
https://www.ncsc.gov.uk/guidance/shadow-it
https://www.ncsc.gov.uk/guidance/shadow-it
www.ncsc.gov.uk
Shadow IT
Managing 'unknown assets' that are used within an organisation.
Пошаговое руководство от CIS как сделать дорожную карту
https://learn.cisecurity.org/plan-cybersecurity-roadmap-guide
https://learn.cisecurity.org/plan-cybersecurity-roadmap-guide
learn.cisecurity.org
Cybersecurity Roadmap Guide
CIS SecureSuite Membership offers tools and resources to construct a comprehensive cybersecurity roadmap. Perfect for organizations, consultants, and product vendors, it provides assistance in fortifying systems, integrating best practices, and advancing