The Framework for Improving Critical Infrastructure Cybersecurity (“The Framework”) was issued on February 12, 2014, as directed by President Obama in Executive Order 13636. This voluntary framework – based on existing standards, guidelines, and practices – provides guidance for reducing cybersecurity risk for organizations within critical infrastructure sectors. The Framework was developed in a year-long, collaborative process in which NIST served as a convener for industry, academia, and government stakeholders. This collaboration continues as NIST works with stakeholders from across the country and around the world.
Link: www.nist.gov