Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Other (Initial Public Draft)

Cybersecurity Framework Manufacturing Profile

Date Published: September 7, 2016
Comments Due: November 4, 2016 (public comment period is CLOSED)
Email Questions to:


National Institute of Standards and Technology


A draft manufacturing implementation of the Cybersecurity Framework ("Profile") has been developed to establish a roadmap for reducing cybersecurity risk for manufacturers that is aligned with manufacturing sector goals and industry best practices. This Manufacturing "Target" Profile focuses on desired cybersecurity outcomes and can be used as a roadmap to identify opportunities for improving the current cybersecurity posture of a manufacturing system. This Manufacturing Profile provides a voluntary, risk-based approach for managing cybersecurity activities and reducing cyber risk to manufacturing systems. The Manufacturing Profile is meant to enhance but not replace current cybersecurity standards and industry guidelines that the manufacturer is embracing.



risk management; manufacturing; Cybersecurity Framework
Control Families

Audit and Accountability; Configuration Management; Contingency Planning; Identification and Authentication; Physical and Environmental Protection


Cybersecurity Framework Manufacturing Profile (Draft) (pdf)

Supplemental Material:
None available

Document History:
09/07/16: Other (Draft)
03/20/17: Other (Draft)
09/08/17: IR 8183 (Final)