https://community.isc2.org/t5/Industry-News/Draft-NIST-7621-R2-Small-Business-Cybersecurity-Non-Employer/m-p/79904#M7490 <P>Dear All,</P><P>&nbsp;</P><P>NIST published Draft NIST 7621 R2, Small Business Cybersecurity: Non-Employer Firms on May 1, 2025. This report is designed to help small firms (those with no employees, or “non-employer” firms) use the NIST Cybersecurity Framework (CSF) 2.0 to begin managing their cybersecurity risks. The goal of the publication is to introduce fundamentals of a cybersecurity program, in non-technical language, at the earliest stage of a business to set a solid cybersecurity risk management foundation. The comment period is open through June 30, 2025.<BR /><BR /><A href="https://nvlpubs.nist.gov/nistpubs/ir/2025/NIST.IR.7621r2.ipd.pdf" target="_blank">https://nvlpubs.nist.gov/nistpubs/ir/2025/NIST.IR.7621r2.ipd.pdf</A></P><P>&nbsp;</P><P>&nbsp;</P> Mon, 05 May 2025 18:41:09 GMT Kyaw_Myo_Oo 2025-05-05T18:41:09Z https://community.isc2.org/t5/Industry-News/Draft-NIST-7621-R2-Small-Business-Cybersecurity-Non-Employer/m-p/79904#M7490 <P>Dear All,</P><P>&nbsp;</P><P>NIST published Draft NIST 7621 R2, Small Business Cybersecurity: Non-Employer Firms on May 1, 2025. This report is designed to help small firms (those with no employees, or “non-employer” firms) use the NIST Cybersecurity Framework (CSF) 2.0 to begin managing their cybersecurity risks. The goal of the publication is to introduce fundamentals of a cybersecurity program, in non-technical language, at the earliest stage of a business to set a solid cybersecurity risk management foundation. The comment period is open through June 30, 2025.<BR /><BR /><A href="https://nvlpubs.nist.gov/nistpubs/ir/2025/NIST.IR.7621r2.ipd.pdf" target="_blank">https://nvlpubs.nist.gov/nistpubs/ir/2025/NIST.IR.7621r2.ipd.pdf</A></P><P>&nbsp;</P><P>&nbsp;</P> Mon, 05 May 2025 18:41:09 GMT https://community.isc2.org/t5/Industry-News/Draft-NIST-7621-R2-Small-Business-Cybersecurity-Non-Employer/m-p/79904#M7490 Kyaw_Myo_Oo 2025-05-05T18:41:09Z