Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » NIST » NIST CSF 2.0

NIST CSF 2.0

NIST Cybersecurity Framework (CSF) 2.0 is an update to NIST CSF  framework.  It expands principles of NIST CSF and adds more structured guidance on minimizing cybersecurity risks. It encompasses organizations of all sizes, irrespective of their security maturity.

After the successful debut of the NIST CSF in 2014 and adoption by 50% of US-based organizations just after 6 years of release, NIST started working on NIST CSF 2.0 in 2022. The CSF 2.0 was released in February 2024 to include not just critical infrastructure sectors but also businesses ranging from schools and startups to enterprise and government organizations.

NIST CSF 2.0 also has a lot of informative references for better adoption and supports integration with other risk programs. reflecting the rapidly changing digital landscape and serving as a comprehensive tool for organizations to strengthen their cybersecurity defenses.

Additional reading

Is ISO 42001 the solution to AI risk management??

AI is everywhere. Artificial intelligence has become a seamless part of modern business, from the tools your team uses daily to third-party applications you barely notice. However, with this rapid adoption comes a significant problem: managing the risks that AI introduces.  Hallucinated outputs, biased decision-making, and even unauthorized data usage aren’t hypothetical; they’re real challenges…

Cyber Security Risk Assessments: How to Protect Your Business

Digital assets and data are the lifeblood of every organization today. But as with everything precious, they’re constantly at risk of being unlawfully accessed, tampered with, stolen, or transmitted. Such malicious actions can not only cause irreparable harm and damage to the organization but can severely hamper future business prospects.  Cyber risk assessments are periodical…

Incident Management Policy – Download Free Template

Security incidents are inevitable. That doesn’t mean businesses can’t minimize the impact of these incidents soundly. Companies must be ready to respond effectively to cyber incidents to restore critical business functions. The best way to be fully prepared for incidents is by having a detailed incident management policy ready for reference. What exactly is this…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales