NIST Frameworks & Reference Library
Quick matrix of NIST frameworks and cornerstone publications relevant to ABI Consulting’s cybersecurity, AI, privacy, risk, identity, supply chain, OT/ICS, and software security work.
| Framework / Publication | What it is / Aimed at | Typical verticals | Official page |
|---|---|---|---|
| Cybersecurity Framework (CSF) 2.0 Framework for managing cyber risk |
Outcome-focused framework to improve and communicate cybersecurity risk management. | Critical InfrastructureSMBFinanceHealthcare | nist.gov/cyberframework |
| AI Risk Management Framework (AI RMF) Trustworthy AI |
Framework to identify, assess, and manage risks from AI systems. | TechFinanceHealthcare | AI RMF |
| Privacy Framework | Framework to manage privacy risk alongside cybersecurity risk. | Consumer DataHealthFinance | Privacy Framework |
| Risk Management Framework (RMF) | 7-step process linking system risk with controls and authorization. | FederalDefense | SP 800-37r2 |
| Security & Privacy Controls | Catalog of security and privacy controls (SP 800-53). | FederalEnterprises | SP 800-53 |
| SP 800-171 | Safeguards for Controlled Unclassified Information. | DefenseContractors | SP 800-171 |
| Zero Trust Architecture | Concepts and models for zero trust security (SP 800-207). | All sectors | SP 800-207 |
| Secure Software Development Framework | Guidance for secure software practices (SP 800-218). | SoftwareSaaS | SP 800-218 |
| OT/ICS Security | Guidance for industrial control system security (SP 800-82). | ManufacturingEnergy | SP 800-82 |