Earlier this week the National Institute of Standards and Technology (NIST) announced that they would be holding a 2-day Cybersecurity Framework (CSF) workshop starting on April 6th, 2016 at their facility in Gaithersburg, Maryland. This will be a public workshop and advanced registration is required.
While a draft agenda is available (.docx download) it is currently only vaguely general in nature. The CSF web site provides a little more detail on what the workshop will cover:
• Ways in which the Framework is being used to improve cybersecurity risk management;
• How best practices for using the Framework are being shared;
• The relative value of different parts of the Framework;
• The possible need for an update of the Framework; and
• Options for long-term governance of the Framework.
In short, it looks like the workshop will address many of the same issues that have been addressed in the latest request for information, but that should not be unexpected to anyone who followed the CSF development process. I expect that more information will be made available in the coming weeks.