NIST CSF 2.0 draft || Google Cloud Cybersecurity AI
CyberInsights #91 - Draft of version 2.0 of the NIST CSF framework is out for public comment | Google fires an AI salvo with cybersecurity AI!
The NIST Cybersecurity Framework 2.0 draft for comments is out.
There’s a new section - Govern (GV)
The NIST CSF has been the go-to standard for infosec professionals since its release in 2014. Till the NIST CSF, standards focused on identifying risks and implementing controls. The CSF broadened it to responding and recovering from cyber incidents.
In short, it was the earliest standard that thought - you will have cyber breaches. Prepare to respond and recover from it. It moved incident response from back rooms to centre stage.
And now, 9 years later, we have the new NIST CSF - 2.0 (although still a draft), trying to adopt to changing times.
While having a completely new section - Govern - in addition to Identify, Protect, Detect, Respond and Recover seems like a major change, it’s actually not. Many of the govern controls map to the identify section:
NIST CSF is doing what it does best. It’s getting cybersecurity professionals to pivot again. It’s making Governance cool again!
Take Action:
Download the version 2.0 core from here.
The best way to contribute to the profession & to your own learning is to read the draft, compare it to what you have been implementing and suggest improvements to this email address - cyberframework@nist.gov.
Google releases its cybersecurity focused AI
Cybersecurity is a great use case for AI. People are still learning to trust it.
Google launched its first cybersecurity focused AI on its Google Cloud platform. Read the details here. The WSJ covered it here.
Google says that the analytics will ensure that they honour all privacy related commitments. A blog written by the VP/GM of Google Cloud says this:
Google says the AI platform will use data only during inference time. I did not understand what that meant, or how it would work. Maybe some of my readers can answer this better.
If you are a Google Cloud user, the point to note is that AI features are available on two services:
Security Commander Centre
Google Chronicle
Take Action:
Explore this feature. Check the features. However, work out for yourself if it is good to use. Use the basic check that you always do — Does it flag false positives? Are there any false negatives?
Also, check what this means to your data privacy on GCP.