NIST published the second draft of the proposed update to the Framework for Improving Critical Infrastructure Cybersecurity . This second draft update aims to clarify, refine, and enhance the Cybersecurity Framework, amplifying its value and making it easier to use. This latest draft reflects comments received to date, including those from a public review process launched in January 2017 and a workshop in May 2017.
Public comments for the latest draft of Cybersecurity Framework version 1.1 and the draft Roadmap are due to NIST by 11:59 PM on Friday, January 19, 2018 via cyberframework [at] nist.gov (cyberframework[at]nist[dot]gov). NIST anticipates finalizing Cybersecurity Framework version 1.1 in Spring 2018