Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Updates 2025

Draft CSF 2.0 Quick Start Guide: Cybersecurity, Enterprise Risk Management, and Workforce Management
March 12, 2025

NIST has posted the initial public draft of Special Publication 1308, NIST Cybersecurity Framework 2.0: Cybersecurity, Enterprise Risk Management, and Workforce Management Quick Start Guide. This document shows how the Workforce Framework for Cybersecurity (NICE Framework) and the Cybersecurity Framework (CSF) 2.0 can be used together to address cybersecurity risk. It is the newest of the CSF 2.0 Quick Start Guides (QSG) released since February 26, 2024; these resources provide different audiences with tailored pathways into the CSF 2.0, making it easier to implement.

This QSG draws on three key NIST resources to enable users to align their cybersecurity, ERM, and workforce management practices in a streamlined process:

The public comment period is open through Friday, April 25, 2025.

Related Topics

Security and Privacy: risk management

Applications: cybersecurity framework, cybersecurity workforce, enterprise

Activities and Products: quick-start guides

Created March 12, 2025