The NIST Cybersecurity Framework consists of standards, guidelines, and best practices to manage cybersecurity-related risk. The framework’s prioritized, flexible, and cost-effective approach helps to promote the protection and resilience of critical infrastructure and other sectors important to the economy and national security. We spoke with Amy Mahn, an international policy specialist in the NIST Applied Cybersecurity Division, about the framework, who can use it, and how it’s evolving.

What is the Cybersecurity Framework, and what was it created to accomplish?

 …