Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

777 - Applied Cybersecurity Division Supplemental Materials

Applied Cybersecurity Division

Publications

NIST Special Publication (SP; General Series)
NIST Special Publication 1800 Series (SP 1800; Cybersecurity Practice Guides)
NIST Special Publication 800 series (SP 800; Computer Security)
NIST Interagency or Internal Report (IR)
NIST Cybersecurity White Paper (CSWP)
Other Papers
Translations
IoT Cybersecurity Program Documents

Recognition

Internal
External

 

NIST Special Publication (SP; General Series)

  1. A. Mahn, D. Topper, S. Quinn, and J. Marron. Getting Started with the NIST Cybersecurity Framework: A Quick Start Guide. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1271 (2021). DOI: 10.6028/NIST.SP.1271 
  2. National Institute of Standards and Technology. NIST Cybersecurity Framework 2.0: Resource and Overview Guide. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1299 (2024). DOI: 10.6028/NIST.SP.1299
  3. National Institute of Standards and Technology. NIST Cybersecurity Framework 2.0: Small Business Quick-Start Guide. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1300 (2024). DOI: 10.6028/NIST.SP.1300
  4. National Institute of Standards and Technology. NIST Cybersecurity Framework 2.0: Quick-Start Guide for Creating and Using Organizational Profiles. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1301 (2024). DOI: 10.6028/NIST.SP.1301

NIST Special Publication 1800 series (SP 1800; Cybersecurity Practice Guides)

  1. W. Fisher, P. Grassi, S. Dog, S. Jha, W. Kim, T. McCorkill, J. Portner, M. Russell, S. Umarji, and W. Barker. Mobile Application Single Sign-On: Improving Authentication for Public Safety First Responders. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1800-13 (2021). DOI: 10.6028/NIST.SP.1800-13
  2. D. Dodson, D. Montgomery, W. Polk, M. Ranganathan, M. Souppaya, S. Johnson, A. Kadam, C. Pratt, D. Thakore, M. Walker, E. Lear, B. Weis, W. Barker, D. Coclin, A. Hojjati, C. Wilson, T. Jones, A. Baykal, D. Cohen, K. Yeich, Y. Fashina, P. Grayeli, J. Harrington, J. Klosterman, B. Mulugeta, S. Symington, and J. Singh. Securing Small-Business and Home Internet of Things (IoT) Devices: Mitigating Network-Based Attacks Using Manufacturer Usage Description (MUD). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1800-15 (2021). DOI: 10.6028/NIST.SP.1800-15
  3. M. Bartock, D. Dodson, M. Souppaya, D. Carroll, R. Masten, G. Scinta, P. Massia, H. Prafullchandra, J. Malnar, H. Singh, R. Ghandi, L. Storey, R. Yeluri, T. Shea, M. Dalton, R. Weber, K. Scarfone, A. Dukes, J. Haskins, C Phoenix, and B. Swarts. Trusted Cloud: Security Practice Guide for VMware Hybrid Cloud Infrastructure as a Service (IaaS) Environments. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1800-19 (2022). DOI: 10.6028/NIST.SP.1800-19
  4. K. Boeckl, N. Grayson, G. Howell, N. Lefkovitz, J. Ajmo, R. Craft, M. McGinnis, K. Sandlin, O. Slivina, J. Snyder, and P. Ward. Mobile Device Security: Bring Your Own Device (BYOD). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1800-22 (2023). DOI: 10.6028/NIST.SP.1800-22
  5. W. Newhouse, M. Ekstrom, J. Finke, and M. Harriston. (2021) Securing Property Management Systems. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1800-27 (2021). DOI: 10.6028/NIST.SP.1800-27
  6. W. Fisher, R. Craft, M. Ekstrom, J. Sexton, and J. Sweetnam. Data Confidentiality: Identifying and Protecting Assets Against Data Breaches. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1800-28 (2024). DOI: 10.6028/NIST.SP.1800-28
  7. W. Fisher, R. Craft, M. Ekstrom, J. Sexton, and J. Sweetnam. Data Confidentiality: Detect, Respond to, and Recover from Data Breaches. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1800-29 (2024). DOI: 10.6028/NIST.SP.1800-29
  8. J. Cawthra, N. Grayson, R. Pulivarti, B. Hodges, J. Kuruvilla, K. Littlefield, J. Snyder, S. Wang, R. Williams, and K. Zheng. Securing Telehealth Remote Patient Monitoring Ecosystem. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1800-30 (2022). DOI: 10.6028/NIST.SP.1800-30
  9. T. Diamond, A. Kerman, M. Souppaya, K. Stine, B. Johnson, C. Peloquin, V. Ruffin, M. Simos, S. Sweeney, and K. Scarfone. Improving Enterprise Patching for General IT Systems: Utilizing Existing Tools and Performing Processes in Better Ways. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1800-31 (2022). DOI: 10.6028/NIST.SP.1800-31
  10. J. McCarthy, E. Division, D. Faatz, N. Urlaub, J. Wiltberger, and T. Yimer. Securing Distributed Energy Resources: An Example of Industrial Internet of Things Cybersecurity. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1800-32 (2022). DOI: 10.6028/NIST.SP.1800-32
  11. J. Boyens, T. Diamond, N. Grayson, C. Paulsen, W. Polk, A. Regenscheid, M. Souppaya, C. Brown, C. Deane, J. Hurlburt, and K. Scarfone. Validating the Integrity of Computing Devices. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1800-34 (2022). DOI: 10.6028/NIST.SP.1800-34

NIST Special Publication 800 series (SP 800; Computer Security)

  1. J. Marron. Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule: A Cybersecurity Resource Guide. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 800-66r2 (2024). DOI: 10.6028/NIST.SP.800-66r2
  2. M. Fagan, J. Marron, K. Brady, Jr., B. Cuthill, K. Megas, R. Herold, D. Lemire, and B. Hoehn. IoT Device Cybersecurity Guidance for the Federal Government: Establishing IoT Device Cybersecurity Requirements. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 800-213 (2021). DOI: 10.6028/NIST.SP.800-213
  3. M. Fagan, K. Megas, J. Marron, K. Brady, Jr., B. Cuthill, R. Herold, D. Lemire, and B. Hoehn. IoT Device Cybersecurity Guidance for the Federal Government: IoT Device Cybersecurity Requirement Catalog. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 800-213A (2021). DOI: 10.6028/NIST.SP.800-213A
  4. S. Quinn, N. Ivy, J. Chua, M. Barrett, L. Feldman, D. Topper, G. Witte, R.K. Gardner, and K. Scarfone. Enterprise Impact of Information and Communications Technology Risk: Governing and Managing ICT Risk Programs Within an Enterprise Risk Portfolio. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 800-221 (2023). DOI: 10.6028/NIST.SP.800-221
  5. S. Quinn, N. Ivy, J. Chua, K. Scarfone, M. Barrett, L. Feldman, D. Topper, G. Witte, and R.K. Gardner. Information and Communications Technology (ICT) Risk Outcomes: Integrating ICT Risk Management Programs with the Enterprise Risk Portfolio. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 800-221A (2023). DOI: 10.6028/NIST.SP.800-221A 

NIST Interagency or Internal Report (IR)

  1. M. Barrett, J. Marron, V. Pillitteri, J. Boyens, S. Quinn, G. Witte, and L. Feldman. Approaches for Federal Agencies to Use the Cybersecurity Framework. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8170, Includes updates as of August 17, 2021 (2021). DOI: 10.6028/NIST.IR.8170
  2. G. Howell, K. Brady, Jr., S. Ledgerwood, and D. Harriss. Security Guidance for First Responder Mobile and Wearable Devices. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8235 (2022). DOI: 10.6028/NIST.IR.8235
  3. M. Fagan, J. Marron, K. Brady, Jr., B. Cuthill, K. Megas, and R. Herold. IoT Non-Technical Supporting Capability Core Baseline. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8259B (2021). DOI: 10.6028/NIST.IR.8259B
  4. S. Quinn, N. Ivy, M. Barrett, L. Feldman, G. Witte, and R.K. Gardner. Identifying and Estimating Cybersecurity Risk for Enterprise Risk Management. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8286A (2021). DOI: 10.6028/NIST.IR.8286A
  5. S. Quinn, N. Ivy, M. Barrett, L. Feldman, G. Witte, and R.K. Gardner. Prioritizing Cybersecurity Risk for Enterprise Risk Management. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8286B (2022). DOI: 10.6028/NIST.IR.8286B
  6. S. Quinn, N. Ivy, M. Barrett, G. Witte, and R.K. Gardner. Staging Cybersecurity Risks for Enterprise Risk Management and Governance Oversight. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8286C (2022). DOI: 10.6028/NIST.IR.8286C
  7. S. Quinn, N. Ivy, J. Chua, M. Barrett, L. Feldman, D. Topper, G. Witte, and R.K. Gardner. Using Business Impact Analysis to Inform Risk Prioritization and Response. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8286D (2022). DOI: 10.6028/NIST.IR.8286D
  8. M. Bartock, M. Souppaya, R. Savino, T. Knoll, U. Shetty, M. Cherfaoui, R. Yeluri, A. Malhotra, D. Banks, M. Jordan, D. Pendarakis, J. Rao, P. Romness, and K. Scarfone. Hardware-Enabled Security: Enabling a Layered Approach to Platform Security for Cloud and Edge Computing Use Cases. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8320 (2022). DOI: 10.6028/NIST.IR.8320
  9. M. Bartock, M. Souppaya, J. Wheeler, T. Knoll, U. Shetty, R. Savino, J. Inbaraj, S. Righi, and K. Scarfone. Hardware-Enabled Security: Container Platform Security Prototype. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8320A (2021). DOI: 10.6028/NIST.IR.8320A
  10. M. Bartock, M. Souppaya, H. Xia, R. Yeluri, U. Shetty, B. Lum, M. Sabath, H. Singh, A. Youssef, G. Steinder, Y. Cao, and J. Ramanathan. Hardware-Enabled Security: Policy-Based Governance in Trusted Container Platforms. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8320B (2022). DOI: 10.6028/NIST.IR.8320B
  11. M. Bartock, S. Lightman, Y. Li-Baboud, J. McCarthy, K. Reczek, J. Brule, K. Meldorf, D. Northrip, A. Scholz, and T. Suloway. Foundational PNT Profile: Applying the Cybersecurity Framework for the Responsible Use of Positioning, Navigation, and Timing (PNT) Services. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8323r1 (2023). DOI: 10.6028/NIST.IR.8323r1
  12. K. Megas, M. Fagan, B. Cuthill, M. Raguso, and J. Wiltberger. Workshop Summary Report for “Cybersecurity Risks in Consumer Home Internet of Things (IoT) Products” Virtual Workshop. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8333 (2021). DOI: 10.6028/NIST.IR.8333
  13. K. Wetzel. NICE Framework Competency Areas: Preparing a Job-Ready Cybersecurity Workforce. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8355 (2023). DOI: 10.6028/NIST.IR.8355 
  14. W. Barker, W. Fisher, K. Scarfone, and M. Souppaya. Ransomware Risk Management: A Cybersecurity Framework Profile. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8374 (2022). DOI: 10.6028/NIST.IR.8374
  15. K. Megas, M. Fagan, and D. Lemire. Summary Report for the Virtual Workshop Addressing Public Comment on NIST Cybersecurity for IoT Guidance. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8379 (2021). DOI: 10.6028/NIST.IR.8379
  16. W. Newhouse, J. Long, D. Weitzel, J. Warren, M. Thompson, C. Yates, H. Tran, A. Mink, A. Herriott, and T. Cottle. Cybersecurity Framework Profile for Liquefied Natural Gas. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8406-upd1, Includes updates as of October 4, 2023 (2023). DOI: 10.6028/NIST.IR.8406-upd1 
  17. K. Stouffer, M. Pease, J. Lubell, E. Wallace, H. Reed, V. Martin, S. Granata, A. Noh, C. Freeberg. Blockchain and Related Technologies to Support Manufacturing Supply Chain Traceability: Needs and Industry Perspectives. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8419 (2022). DOI: 10.6028/NIST.IR.8419
  18. M. Fagan, K. Megas, P. Watrobski, J. Marron, and B. Cuthill. Profile of the IoT Core Baseline for Consumer IoT Products. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8425 (2022). DOI: 10.6028/NIST.IR.8425
  19. K. Megas, M. Fagan, B. Cuthill, B. Hoehn, D. Lemire, and R. Herold. Workshop Summary Report for “Building on the NIST Foundations: Next Steps in IoT Cybersecurity.” (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8431 (2022). DOI: 10.6028/NIST.IR.8431
  20. R. Pulivarti, N. Martin, F. Byers, J. Wagner, J. Zook, S. Maragh, J. McDaniel, K. Wilson, M. Wojtyniak, B. Kreider, A. France, S. Edwards, T. Morris, J. Sheldon, S. Ross, and P. Whitlow. Cybersecurity of Genomic Data. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8432 (2023). DOI: 10.6028/NIST.IR.8432 
  21. J. McCarthy, D. Mamula, J. Brule, K. Meldorf, R. Jennings, J. Wiltberger, C. Thorpe, J. Dombrowski, O. Lattin, and S. Sepassi. Cybersecurity Framework Profile for Hybrid Satellite Networks (HSN). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8441 (2023). DOI: 10.6028/NIST.IR.8441 
  22. J. McCarthy, N. Grayson, J. Brule, T. Cottle, A. Dinerman, J. Dombrowski, J. Long, H. Tran, K. Quigg, M. Thompson, A. Townsend, and N. Urlaub. Cybersecurity Framework Profile for Electric Vehicle Extreme Fast Charging Infrastructure (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency Report (IR) NIST IR 8473 (2023). DOI: 10.6028/NIST.IR.8473 
  23. K. Scarfone, M. Souppaya, and M. Fagan. Mapping Relationships Between Documentary Standards, Regulations, Frameworks, and Guidelines: Developing Cybersecurity and Privacy Concept Mappings. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8477 (2024). DOI: 10.6028/NIST.IR.8477  

NIST Cybersecurity White Paper (CSWP)

  1. W. Barker, W. Polk, and M. Souppaya. Getting Ready for Post-Quantum Cryptography: Exploring Challenges Associated with Adopting and Using Post-Quantum Cryptographic Algorithms. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 15 (2021). DOI: 10.6028/NIST.CSWP.15
  2. J. Marron, A. Gopstein, and D. Bogle. Benefits of an Updated Mapping between the NIST Cybersecurity Framework and the NERC Critical Infrastructure Protection Standards. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 21 (2021). DOI: 10.6028/NIST.CSWP.21
  3. National Institute of Standards and Technology. Recommended Criteria for Cybersecurity Labeling of Consumer Software. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 23 (2022). DOI: 10.6028/NIST.CSWP.23
  4. National Institute of Standards and Technology. Recommended Criteria for Cybersecurity Labeling for Consumer Internet of Things (IoT) Products. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 24 (2022). DOI: 10.6028/NIST.CSWP.24
  5. J. McCarthy, D. Mamula, J. Brule, and K. Meldorf. Cybersecurity Framework Profile for Hybrid Satellite Networks (HSN): Final Annotated Outline. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 27 (2022). DOI: 10.6028/NIST.CSWP.27
  6. M. Powell, J. Hoyt, A. Sherule, and L. Wilcox. Security Segmentation in a Small Manufacturing Environment. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 28 (2023). DOI: 10.6028/NIST.CSWP.28
  7. National Institute of Standards and Technology. The NIST Cybersecurity Framework (CSF) 2.0. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 29 (2024). DOI: 10.6028/NIST.CSWP.29

Other Papers

  1. National Institute of Standards and Technology. Getting Started with Cybersecurity Risk Management: Ransomware. (2022). Available at https://csrc.nist.gov/pubs/other/2022/02/24/getting-started-with-cybersecurity-risk-management/final 
  2. National Institute of Standards and Technology. Getting Started with the NIST Privacy Framework: A Guide for Small and Medium Businesses. (2021). Available at https://www.nist.gov/system/files/documents/2021/01/13/Getting-Started-NIST-Privacy-Framework-Guide.pdf

Translations

The following translations of division 777 publications were released during 3/1/21 – 3/1/24.

NIST Cybersecurity Framework 1.0

  1. National Institute of Standards and Technology and Government Centre for Security (Poland) (trans.). Framework for Improving Critical Infrastructure Cybersecurity, Version 1.0 (Polish translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 1 pol (2021). DOI: 10.6028/NIST.CSWP.1.pol

NIST Cybersecurity Framework 1.1

  1. National Institute of Standards and Technology, A. Al Hasan (trans.), and A. Al Hajj (trans.). Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Arabic translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 6 ara (2022). DOI: 10.6028/NIST.CSWP.6.ara
  2. National Institute of Standards and Technology and V. Dimitrov (trans.). Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Bulgarian translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 6 bul (2022). DOI: 10.6028/NIST.CSWP.6.bul
  3. National Institute of Standards and Technology and B. Benyammi (trans.). Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (French translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 6 fre (2022). DOI: 10.6028/NIST.CSWP.6.fre
  4. National Institute of Standards and Technology, I. Dima (trans.), D. Georgiou (trans.), Y. Pavlosoglou (trans.), S. Pitikaris (trans.), and P. Soulos (trans.). Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Greek translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 6 gre (2023). DOI: 10.6028/NIST.CSWP.6.gre
  5. National Institute of Standards and Technology and A. Marwan (trans.). Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Indonesian translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 6 ind (2022). DOI: 10.6028/NIST.CSWP.6.ind
  6. National Institute of Standards and Technology and Japan Information-technology Promotion Agency (IPA) (trans.). Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Japanese translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 6 jpn (2022). DOI: 10.6028/NIST.CSWP.6.jpn
  7. National Institute of Standards and Technology, B. Kwak (trans.), and K. Lim (trans.). Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Korean translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 6 kor (2024). DOI: 10.6028/NIST.CSWP.6.kor
  8. National Institute of Standards and Technology and M.F. Abdul Khir (trans.). Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Malay translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 6 may (2023). DOI: 10.6028/NIST.CSWP.6.may
  9. National Institute of Standards and Technology and T.-S. Hansen (trans.). Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Norwegian translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 6 nor (2023). DOI: 10.6028/NIST.CSWP.6.nor
  10. National Institute of Standards and Technology, U.S. Chamber of Commerce (trans.), and Brazil-U.S. Business Council (trans.). Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Portuguese translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 6 por (2021). DOI: 10.6028/NIST.CSWP.6.por
  11. National Institute of Standards and Technology. Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Spanish translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 6 spa (2022). DOI: 10.6028/NIST.CSWP.6.spa
  12. National Institute of Standards and Technology, A. Paziuk (trans.), and U.S. Embassy to Ukraine (trans.). Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Ukrainian translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 6 ukr (2022). DOI: 10.6028/NIST.CSWP.6.ukr

CSF 1.1 Community Profiles and Quick Start Guides

  1. W. Barker, W. Fisher, K. Scarfone, M. Souppaya, and U.S. Department of State (trans.). Ransomware Risk Management: A Cybersecurity Framework Profile (Portuguese translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8374 por (2022). https://doi.org/10.6028/NIST.IR.8374.por
  2. W. Barker, W. Fisher, K. Scarfone, M. Souppaya, and U.S. Department of State (trans.). Ransomware Risk Management: A Cybersecurity Framework Profile (Spanish translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8374 spa (2022). https://doi.org/10.6028/NIST.IR.8374.spa
  3. A. Mahn, D. Topper, S. Quinn, J. Marron, and U.S. Department of State (trans.). Getting Started with the NIST Cybersecurity Framework: A Quick Start Guide (Portuguese translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST IR 1271 por (2021). https://doi.org/10.6028/NIST.SP.1271pt
  4. A. Mahn, D. Topper, S. Quinn, J. Marron, and U.S. Department of State (trans.). Getting Started with the NIST Cybersecurity Framework: A Quick Start Guide (Spanish translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1271 spa (2021). https://doi.org/10.6028/NIST.SP.1271es 
  5. A. Mahn, D. Topper, S. Quinn, J. Marron, D. Mialkovskyi (trans.), O. Bakalynskyi (trans.), I. Vysotskyi (trans.), M. Vosmeryk (trans.), A. Korostelkina (trans.), I. Zuzin (trans.), and V. Shmalenuk (trans.).  Getting Started with the NIST Cybersecurity Framework: A Quick Start Guide (Ukrainian translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 1271 ukr (2023). https://doi.org/10.6028/NIST.SP.1271.ukr 
  6. National Institute of Standards and Technology, and U.S. Department of State (trans.). Getting Started with Cybersecurity Risk Management: Ransomware (Portuguese translation). (2022). Available at https://csrc.nist.gov/files/pubs/other/2022/02/24/getting-started-with-cybersecurity-risk-management/final/docs/quick-start-guide--ransomware.por.pdf 
  7. National Institute of Standards and Technology, and U.S. Department of State (trans.). Getting Started with Cybersecurity Risk Management: Ransomware (Spanish translation). (2022). Available at https://csrc.nist.gov/files/pubs/other/2022/02/24/getting-started-with-cybersecurity-risk-management/final/docs/quick-start-guide--ransomware.spa.pdf 

 

NIST Privacy Framework 1.0

  1. National Institute of Standards and Technology and U.S. Embassy in the United Arab Emirates, Commercial Section (trans.). NIST Privacy Framework: A Tool for Improving Privacy Through Enterprise Risk Management, Version 1.0 (Arabic translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 10 ara (2022). DOI: 10.6028/NIST.CSWP.10.ara
  2. National Institute of Standards and Technology and A. Marwan (trans.). NIST Privacy Framework: A Tool for Improving Privacy Through Enterprise Risk Management, Version 1.0 (Indonesian translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 10 ind (2021). DOI: 10.6028/NIST.CSWP.10.ind
  3. National Institute of Standards and Technology, M.F. Abdul Khir (trans.), and N. I. Mohd Fared (trans.). NIST Privacy Framework: A Tool for Improving Privacy Through Enterprise Risk Management, Version 1.0 (Malaysian translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 10 may (2024). DOI: 10.6028/NIST.CSWP.10.may
  4. National Institute of Standards and Technology and U.S. Department of State (trans.). NIST Privacy Framework: A Tool for Improving Privacy Through Enterprise Risk Management, Version 1.0 (Portuguese translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 10 por (2021). DOI: 10.6028/NIST.CSWP.10.por
  5. National Institute of Standards and Technology and U.S. Department of State (trans.). NIST Privacy Framework: A Tool for Improving Privacy Through Enterprise Risk Management, Version 1.0 (Spanish translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Cybersecurity White Paper (CSWP) NIST CSWP 10 spa (2021). DOI: 10.6028/NIST.CSWP.10.spa

NIST Privacy Framework 1.0 Quick Start Guides

  1. National Institute of Standards and Technology and U.S Department of State (trans.). Getting Started with the NIST Privacy Framework: A Guide for Small and Medium Businesses (Portuguese translation). (2022). Available at https://www.nist.gov/document/portuguese-translation-getting-started-nist-privacy-framework-guide-small-and-medium
  2. National Institute of Standards and Technology and U.S Department of State (trans.). Getting Started with the NIST Privacy Framework: A Guide for Small and Medium Businesses (Spanish translation). (2022). Available at https://www.nist.gov/document/spanish-translation-getting-started-nist-privacy-framework-guide-small-and-medium

National Initiative for Cybersecurity Education (NICE) Documents

NICE Framework 2020 (NIST SP 800-181r1)

  1. R. Petersen, D. Santos, K. Wetzel, M. Smith, G. Witte, and L. Rivaton (trans.). Workforce Framework for Cybersecurity (NICE Framework) (French translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 800-181r1 fre (2023). DOI: 10.6028/NIST.SP.800-181r1.fre
  2. R. Petersen, D. Santos, K. Wetzel, M. Smith, G. Witte, and U.S. Department of State (trans.). Workforce Framework for Cybersecurity (NICE Framework) (Portuguese translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 800-181r1 por (2022). DOI: 10.6028/NIST.SP.800-181r1pt
  3. R. Petersen, D. Santos, K. Wetzel, M. Smith, G. Witte, and University of Žilina (trans.). Workforce Framework for Cybersecurity (NICE Framework) (Slovak translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 800-181r1 slo (2022). DOI: 10.6028/NIST.SP.800-181r1.slo
  4. R. Petersen, D. Santos, K. Wetzel, M. Smith, G. Witte, and U.S. Department of State (trans.). Workforce Framework for Cybersecurity (NICE Framework) (Spanish translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 800-181r1 spa (2022). DOI: 10.6028/NIST.SP.800-181r1es
  5. R. Petersen, D. Santos, K. Wetzel, M. Smith, G. Witte, Ukrainian Academy of Cybersecurity (trans.), and U.S. Embassy to Ukraine (trans.). Workforce Framework for Cybersecurity (NICE Framework) (Ukrainian translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 800-181r1 ukr (2022). DOI: 10.6028/NIST.SP.800-181r1.ukr

NICE Framework 2017 (NIST SP 800-181)

  1. W. Newhouse, S. Keith, B. Scribner, G. Witte, and L. Rivaton (trans.). National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework (French translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 800-181 fre (2023). DOI: 10.6028/NIST.SP.800-181.fre
  2. W. Newhouse, S. Keith, B. Scribner, G. Witte, and U.S. Department of State (trans.). Workforce Framework for Cybersecurity (NICE Framework) (Portuguese translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 800-181 por (2022). DOI: 10.6028/NIST.SP.800-181pt
  3. W. Newhouse, S. Keith, B. Scribner, G. Witte, and U.S. Department of State (trans.). Workforce Framework for Cybersecurity (NICE Framework) (Spanish translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 800-181 spa (2022). DOI: 10.6028/NIST.SP.800-181es
  4. W. Newhouse, S. Keith, B. Scribner, G. Witte, Ukrainian Academy of Cybersecurity (trans.), and U.S. Embassy to Ukraine (trans.). Workforce Framework for Cybersecurity (NICE Framework) (Ukrainian translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) NIST SP 800-181 ukr (2022). DOI: 10.6028/NIST.SP.800-181.ukr

IoT Cybersecurity Program Documents

  1. K. Boeckl, M. Fagan, W. Fisher, N. Lefkovitz, K. Megas, E. Nadeau, B. Piccarreta, D. Gabel O’Rourke, K. Scarfone, and U.S. Department of State (trans.). Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks (Portuguese translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8228 por (2021). DOI: 10.6028/NIST.IR.8228pt
  2. K. Boeckl, M. Fagan, W. Fisher, N. Lefkovitz, K. Megas, E. Nadeau, B. Piccarreta, D. Gabel O’Rourke, K. Scarfone, and U.S. Department of State (trans.). Considerations for Managing Internet of Things (IoT) Cybersecurity and Privacy Risks (Spanish translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8228 spa (2021). DOI: 10.6028/NIST.IR.8228es
  3. M. Fagan, K. Megas, K. Scarfone, M. Smith, and U.S. Department of State (trans.). Foundational Cybersecurity Activities for IoT Device Manufacturers (Portuguese translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8259 por (2021). DOI: 10.6028/NIST.IR.8259pt
  4. M. Fagan, K. Megas, K. Scarfone, M. Smith, and U.S. Department of State (trans.). Foundational Cybersecurity Activities for IoT Device Manufacturers (Spanish translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8259 spa (2021). DOI: 10.6028/NIST.IR.8259es
  5. M. Fagan, K. Megas, K. Scarfone, M. Smith, and U.S. Department of State (trans.). IoT Device Cybersecurity Capability Core Baseline (Portuguese translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8259A por (2021). DOI: 10.6028/NIST.IR.8259Apt
  6. M. Fagan, K. Megas, K. Scarfone, M. Smith, and U.S. Department of State (trans.). IoT Device Cybersecurity Capability Core Baseline (Spanish translation). (National Institute of Standards and Technology, Gaithersburg, MD), NIST Interagency or Internal Report (IR) NIST IR 8259A spa (2021). DOI: 10.6028/NIST.IR.8259Aes

Recognition

Internal

Name

Award Name

Year 

Citation

Timothy McBride

George A. Uriano Award

2023

For its leadership and engagement of stakeholders to identify measurement grand challenges facing the U.S. semiconductor industry. The team's two Semiconductor Metrology Workshops and its publication of Strategic Opportunities for U.S. Semiconductor Manufacturing defined the required advances in measurements and standards needed for NIST and DOC to successfully implement core programs in the CHIPS for America Act. The programs authorized by the CHIPS Act will expand U.S. manufacturing capacity, grow the research and innovation ecosystem for microelectronics and semiconductors in the U.S., and restore U.S. leadership in semiconductor manufacturing. 

Nelson Hastings

Bronze Medal Award

2022

The group is recognized for the leadership exhibited and unique technical contributions provided while authoring the fourth release of the NIST Smart Grid Interoperability Framework.  A wholesale revision from prior NIST Smart Grid Frameworks, this version contextualizes evolving technical requirements for grid interoperability with the impacts that modern energy technologies are having on the operations, economics, cybersecurity, and standards-testing and certification requirements of power systems.

James McCarthy

Silver Medal Award

2022

For strengthening the resilience of position, navigation, and timing infrastructure and services on which global commerce and national security rely.

Dylan Gilbert

Gold Medal Award

2021

For exceptional leadership and outstanding technical capability in developing the world’s first framework for managing privacy risk. The group achieved consensus on a flexible and voluntary framework that enables organizations to protect individuals’ privacy while embracing the beneficial uses of data and encouraging technical innovation

Maihuong Nguyen

Nakia Grayson

Kaitlin Boeckl

Naomi Lefkovitz

Jeffery Cichnonski

Bronze Medal Award

2021

For development and dissemination of the first detailed cybersecurity guidelines specifically for protecting small and medium-sized manufacturers

 

External

Name

Award Name

Year

Citation

Amy Mahn

World Innovation, Technology, and Services Alliance (WITSA) Chairman's Award

2023

For hosting a multi-year multi-stage public-private process on IoT cybersecurity.

Michael Fagan

Barbara Cuthill

Kat Megas

Karen Wetzel

National Centers of Academic Excellence in Cybersecurity Service Recognition Award

2023

For her outstanding cybersecurity contribution to the community and the Nation from the National Centers of Academic Excellence in Cybersecurity.  Karen joined NIST in 2020 to serve as the first Manager of the NICE Framework.  Karen has participated in the Evidencing Competency Working Group and seeks to increase alignment between the NICE Framework and educational approaches, including the development of competencies for students and the ongoing evolution of Knowledge Units that provide the criteria by which academic institutions are designated as a Center of Academic Excellence.  The award was presented by the Community of Practice in Cyber Defense Education at the annual Centers of Academic Excellence 10th Annual Symposium on Friday, June 9, 2023, in Seattle, WA. 

Rodney Petersen

National Centers of Academic Excellence in Cybersecurity Service Recognition Award

2023

For his outstanding cybersecurity contribution to the community and the Nation from the National Centers of Academic Excellence (CAE) in Cybersecurity.  Rodney joined NIST in 2015 as the second director of NICE, and he led the growth and development of the NICE organization following the program’s first official Congressional authorization in the Cybersecurity Enhancement Act of 2014. The NICE program provided a grant to California State University, San Bernardino, that has supported the annual CAE Symposium for the past 8 years. The award was presented by the Community of Practice in Cyber Defense Education at the annual Centers of Academic Excellence 10th Annual Symposium on Friday, June 9, 2023, in Seattle, WA. 

NIST Cybersecurity Framework TeamInstitute for Security and Technology/Center for Cybersecurity Policy and Law Ecosystem Champion Award2024For helping organizations of all sizes manage cyber risk by publishing a landmark revision to the Cybersecurity Framework 2.0.
Created April 16, 2024, Updated May 10, 2024