| Abstrakt: |
The article discusses the NIST CSF 2.0 and the Cybersecurity Hierarchy, highlighting the new emphasis on governance and executive involvement in cybersecurity. The document outlines the responsibilities of executives, managers, and practitioners in managing cybersecurity risks and communication. The author expresses concerns about the potential impact of shifting the burden of cybersecurity from practitioners to executives, emphasizing the need for alignment of roles and responsibilities in organizations. The article concludes by noting the radical and aspirational nature of the proposed hierarchy and its potential implications for information security programs. [Extracted from the article] |
