Glossary
NIST Cybersecurity Framework (NIST CSF)
What Is NIST CSF 2.0?
The NIST Cybersecurity Framework 2.0 (CSF 2.0) is the U.S. National Institute of Standards and Technology's framework for organizing cybersecurity practices around six core functions: Govern, Identify, Protect, Detect, Respond, and Recover.
CSF 2.0 is the dominant cybersecurity framework in the U.S. and is widely referenced internationally. It is increasingly applied to software supply chain risk: the Identify function requires asset inventories (including software), the Protect function requires hardening and configuration controls, and the Respond function requires the ability to determine impact when incidents occur. NetRise Turbine supports CSF 2.0 alignment by providing the evidence base for those functions in compiled software.
Related Terms
ISO 27001 · Software Bill of Materials · Vulnerability Management · Software Supply Chain Security


