CISA Releases Version 2.0 of Cross-Sector CPGs Guidance
🛡️CISA released version 2.0 of its Cross-Sector Cybersecurity Performance Goals (CPGs), aligning the framework with NIST Cybersecurity Framework 2.0 and three years of operational insights. The update consolidates IT, OT, and IoT goals into unified objectives, adds a new Govern function to strengthen leadership accountability, and expands guidance on zero trust, supply chain risk, and incident communication. CISA presents the streamlined, better-documented goals as practical, measurable, and voluntary actions organizations can adopt regardless of size.
