The National Institute of Standards and Technology (NIST) has recently released the widely-referenced Cybersecurity Framework (version 1.1), incorporating input from industry and other stakeholders. The Framework now includes: (i) a new section on correlating cybersecurity risk management metrics to organizational objectives; (ii) expanded guidance for mitigating supply chain cyber risk; (iii) addresses vulnerability disclosures; (iv) refined language on authentication, identification and authorization; and (v) treatment of the risks inherent in the Internet of Things (IoT)”]
Source: https://www.csoonline.com/article/3271139/the-rise-of-the-nist-cybersecurity-framework.html