CR2 Comments on Evaluating and Improving NIST Cybersecurity Resources: The Cybersecurity Framework and Cybersecurity Supply Chain Risk Management

The Coalition to Reduce Cyber Risk, Inc. (“CR2”) submits these comments in response to the request for information issued by the National Institute of Standards and Technology (“NIST”) regarding the Cybersecurity Framework evaluation and improvement (“CSF 2.0”). CR2 appreciates the opportunity to provide feedback and looks forward to working with NIST as the CSF 2.0 is developed and accompanying NIST at international engagements to promote the CSF 2.0 when those engagements take place.