NIST Updates Manufacturing Profile for CSF - 05-20-19

Buried in a notice about the availability of a ‘low-security’ version of a Cybersecurity Framework (CSF) implementation guide for manufacturers is a link to a notice that NIST has updated their 2017 Cybersecurity Framework Manufacturing Profile (NISTIR 8183). Looking at the table of changes on page v, it looks like most of the changes are moving a number of controls from ‘low security’ to the ‘moderate security’ and ‘high security’ categories.