Expel has recently launched an updated version of its NIST Cybersecurity Framework (CSF) Getting Started toolkit [1] [3] [4] [5], which is in line with NIST CSF version 2.0. This toolkit aims to assist security teams in evaluating and improving their cybersecurity postures.


The updated toolkit includes a guide and a self-scoring spreadsheet to aid in the assessment of cybersecurity postures. The latest version of the NIST CSF introduces a new “Govern” function and Framework Tiers to prioritize investments and characterize cybersecurity risk governance [1] [3] [5]. Expel’s toolkit is designed to help security teams understand the latest updates to the framework [2] [3], providing resources to enhance security programs and controls [2]. The guide helps users evaluate their current [2], future [1] [2] [3], and goal states for each outcome in the CSF [1] [2], while the self-scoring spreadsheet offers guidance on resource allocation [2]. This toolkit streamlines the process of completing initial assessments using the new framework in just a few hours, setting teams up for continuous improvement and promoting ongoing enhancement of cybersecurity measures.


The updated NIST CSF Getting Started toolkit by Expel has the potential to have a significant impact on cybersecurity postures by providing a structured approach to assessment and improvement. By facilitating assessments and promoting ongoing enhancement of cybersecurity measures, this toolkit can help organizations strengthen their security programs and controls. Looking ahead, the toolkit may play a crucial role in ensuring that security teams stay up-to-date with the latest cybersecurity frameworks and continue to enhance their cybersecurity postures.


[1] https://beta.thereadable.co/expel-unveils-updated-nist-csf-2-0-getting-started-toolkit-to-help-companies-on-their-security-maturity-journey/
[2] https://www.businesswire.com/news/home/20240313163544/en/Expel-Unveils-Updated-NIST-CSF-2.0-Getting-Started-Toolkit-to-Help-Companies-on-their-Security-Maturity-Journey/
[3] https://www.innovationopenlab.com/news-biz/17634/expel-unveils-updated-nist-csf-20-getting-started-toolkit-to-help-companies-on-their-security-maturity-journey.html
[4] https://expel.com/resource/expel-unveils-updated-nist-csf-2-0-getting-started-toolkit-to-help-companies-on-their-security-maturity-journey/
[5] https://www.darkreading.com/vulnerabilities-threats/expel-releases-updated-toolkit-in-response-to-nist-2-0