U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Ransomware Cybersecurity Framework Community Profile

Ransomware can quickly disrupt operations, lock organizations out of critical data, and force high-stakes decisions under pressure. This NIST Cybersecurity Framework 2.0 Ransomware Community Profile helps organizations focus on the cybersecurity outcomes that matter most for reducing ransomware risk and improving resilience.

Ransomware Risk Management: A Cybersecurity Framework 2.0 Community Profile gives organizations a practical way to prioritize the cybersecurity outcomes most relevant to ransomware risk. Built on CSF 2.0, the Profile highlights key Categories and Subcategories across GOVERN, IDENTIFY, PROTECT, DETECT, RESPOND, and RECOVER to help organizations strengthen readiness before an attack and improve recovery after one occurs. Organizations can use the Profile to assess their current state, define a target state, identify gaps, and prioritize improvements that support stronger cybersecurity and operational resilience. Intended for organizations of any size or sector, this resource may be especially useful for smaller and less resourced organizations looking for a clear starting point to improve ransomware risk management.

Ransomware remains one of the most disruptive cybersecurity threats facing organizations today. By encrypting critical data and, in some cases, stealing information for additional extortion, ransomware events can halt operations and put immediate pressure on technical teams, leadership, and business stakeholders.

Ransomware Risk Management: A Cybersecurity Framework 2.0 Community Profile helps organizations take a more focused and risk-informed approach to ransomware preparedness. The publication identifies a prioritized set of CSF 2.0 outcomes that support governing management of, identifying, protecting against, detecting, responding to, and recovering from ransomware events.

Whether an organization is already using the Cybersecurity Framework or just beginning to adopt a risk management approach, this Profile can help guide action. It supports readiness assessments, cybersecurity improvement planning, contingency planning, and development of a ransomware countermeasure playbook.