Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Other (Final Public Draft)

Cybersecurity Framework Manufacturing Profile

Date Published: March 20, 2017
Comments Due: April 17, 2017 (public comment period is CLOSED)
Email Questions to:


National Institute of Standards and Technology


A draft manufacturing implementation of the Cybersecurity Framework, or Profile, has been developed for reducing cybersecurity risk for manufacturers that is aligned with manufacturing sector goals and industry best practices. This Manufacturing "Target" Profile focuses on desired cybersecurity outcomes and can be used to identify opportunities for improving the current cybersecurity posture of a manufacturing system. This Manufacturing Profile provides a voluntary, risk-based approach for managing cybersecurity activities and reducing cyber risk to manufacturing systems. The Manufacturing Profile is meant to enhance but not replace current cybersecurity standards and industry guidelines that the manufacturer is embracing.



Cybersecurity Framework; manufacturing; risk management
Control Families

Audit and Accountability; Configuration Management; Contingency Planning; Identification and Authentication; Physical and Environmental Protection


Cybersecurity Framework Manufacturing Profile (Final Draft) (pdf)

Supplemental Material:
None available

Document History:
09/07/16: Other (Draft)
03/20/17: Other (Draft)
09/08/17: IR 8183 (Final)