NEW: The NIST Cybersecurity Framework (CSF 2.0) Playbook. Published on February 26, 2024, the new version represents a major update to the CSF—a resource first released in 2014 to help organizations reduce cybersecurity risk. The new NIST Cyber AI Profile Guidance, published on December 16, 2025, is referenced into the CFS 2.0 Playbook.
CSF 2.0 reflects several major changes, including an expanded scope, the addition of a sixth function, Govern, and improved and expanded guidance on implementing the CSF—especially for creating profiles.
The NIST Cybersecurity Framework (CSF 2.0) Playbook addresses the following functions:
-
GOVERN (GV)
-
IDENTIFY (ID)
-
PROTECT (PR)
-
DETECT (DE)
-
RESPOND (RS), and
-
RECOVER (RC)
The Cyber AI Profile, published on December 16, 2025, addresses the following three Focus Areas:
-
Securing AI System Components (Secure): Focuses on identifying cybersecurity challenges when integrating AI into organizational ecosystems and infrastructure
-
Conducting AI-Enabled Cyber Defense (Defend): Focuses on identifying opportunities to use AI to enhance cybersecurity processes and activities, and understanding challenges when leveraging AI to support defensive operations
-
Thwarting AI-Enabled Cyber Attacks (Thwart): Focuses on building resilience to protect against new AI-enabled threat vectors.
.png?width=81&height=37&name=Back%20(Small2).png){kind=small}