Derived from NIST Cybersecurity Framework

NIST CSF 2.0 Profile

Set current and target tiers per CSF function, watch the gaps appear, and export the profile as a working Excel file.

All templates

When a security roadmap needs its current and target state stated in CSF terms.

What you need and what you get

You'll need

Current and target tier judgements per function

You'll get

A current-versus-target profile, downloadable as PNG or PowerPoint
An Excel profile with the gap per function

NIST CSF 2.0 profile: current and target tiers across the six functions

Each CSF 2.0 function carries two bars on the four-tier scale, Partial to Adaptive: a solid bar for where practice stands today and an outlined bar for where the organisation intends to be.

Read the gap notes first: a two-tier gap is a programme of work, not a quarter's tidy-up. Set targets the business will fund; an Adaptive target on every function is a sign nobody chose.

not set

Set a current and a target tier for each function and the profile fills in as you go. The widest gap and the average appear here.