U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Since the NIST Cybersecurity Framework (CSF) was first released in 2014, it has included Framework Profiles as a key component. The NCCoE has played a significant role in helping communities implement the CSF, including creating Community Profiles. As the threat landscape changes and technology evolves, cybersecurity, privacy, and AI and the relationships between these areas grow, pointing to the need to provide resources for additional NIST frameworks and demonstrating how they can be used together to provide a more comprehensive approach to risk management. Our resources for applying NIST frameworks will continue to expand, including additional Community Profile and guidance.

Recent NCCoE Community Profile Projects

  • Cyber AI Profile

    Guidance based on the NIST Cybersecurity Framework to address the cybersecurity risks related to AI development and use.
    Reviewing Comments

  • Transit Cybersecurity Framework (CSF) Community Profile

    Creating a Community Profile involves understanding priorities and risks, making collaboration an important part of the process. To ensure its success, it's crucial to involve stakeholders in developing this Profile. We welcome...
    Reviewing Comments

  • Cybersecurity Framework Profile for PNT

    A risk management approach for assurance and resilience of positioning, navigation, and timing services.
    Soliciting Comments

  • Cybersecurity Framework Profile for Semiconductor Manufacturing

    A unified approach to identify and prioritize opportunities for managing cybersecurity risks in the semiconductor manufacturing industry.
    Reviewing Comments

  • Ransomware CSF Community Profile

    Identifies the security objectives from the NIST CSF 2.0 that support governing management of identifying, protecting against, detecting, responding to, and recovering from ransomware events.

More Resources

 
NIST has developed additional guidance to support implementation of CSF Community Profiles. 

Join the Community of Interest

Employee speaking on video call with colleagues on online briefing with laptop at home

A Community of Interest (COI) is a group of professionals and advisors who share business insights, technical expertise, challenges, and perspectives to guide NCCoE projects. COIs often include experts, innovators, and everyday users of cybersecurity and privacy technologies. Share your expertise and consider becoming a member of this COI. 

Tell us about yourself