NIST announces the publication of NISTIR 8183 Revision 1, Cybersecurity Framework Version 1.1 Manufacturing Profile. This revision of the CSF Manufacturing Profile includes the sub-category enhancements established in NIST’s Framework for Improving Critical Infrastructure Cybersecurity Version 1.1; these updates include managing cybersecurity within the supply chain, self-assessing cybersecurity risk, vulnerability disclosure, system integrity, and more comprehensive controls for identity management. Additional changes include updating language to change references from “security levels” to “impact levels.”
The Manufacturing Profile was developed for manufacturers managing cybersecurity risk and is aligned with manufacturing sector goals and industry best practices. The Manufacturing Profile provides a voluntary, risk-based approach for managing cybersecurity activities and reducing cyber risk to manufacturing systems. The Manufacturing Profile is meant to enhance but not replace current cybersecurity standards and industry guidelines that the manufacturer is embracing.