NIST CSF 2.0
Practice: Cybersecurity · Type: Standard
The NIST Cybersecurity Framework (CSF) 2.0 organises cybersecurity outcomes into six functions — Govern, Identify, Protect, Detect, Respond and Recover. It is a voluntary, outcome-based framework used to assess and improve security posture.
Benefits
- Scored on NIST CSF 2.0's own scale across all six functions — not a generic rubric.
- Every score is traceable to the client's own controls and evidence.
- Gaps ranked by risk, producing a target-state roadmap rather than a flat checklist.
- A board-ready slide deck and a detailed report generated automatically.
- Re-runnable to track posture improvement over successive engagements.
When to use it
- To baseline an organisation's cybersecurity posture across the full CSF lifecycle.
- When a client wants a target-state roadmap ranked by risk.
- To align a security programme to an outcome-based, board-friendly framework.
- To measure improvement after a remediation programme.
What it assesses
Celeredge scores maturity across all six CSF 2.0 functions and their categories, evidenced from the client's own controls, and produces a target-state roadmap ranked by risk. It covers:
- Govern
- Identify
- Protect
- Detect
- Respond
- Recover
Expected output
Celeredge produces per-function maturity scores on NIST CSF 2.0's own scale. Each answer carries a confidence signal and citations back to the client's evidence, and gaps are ranked by severity. The run generates a board-ready slide deck and a detailed HTML report. See Maturity Scoring, Reports and Deck Studio.
How to use it in Celeredge
- Collect the client's evidence — control documentation and security records — see Evidence Collection.
- In Diagnose, select NIST CSF 2.0.
- Run the assessment and watch it stream — see Running Assessments.
- Review per-function answers with their confidence and citations, then accept the ones you trust.
- Send gaps to Plan — see Gap Analysis.
FAQ
What is NIST CSF 2.0?
A voluntary, outcome-based framework, the NIST Cybersecurity Framework (CSF) 2.0 is used to assess and improve security posture. It structures cybersecurity outcomes under six functions: Govern, Identify, Protect, Detect, Respond and Recover.
What does a Celeredge NIST CSF 2.0 assessment deliver?
An evidence-based maturity assessment scored on the framework's own scale, with gaps ranked by severity and an auto-generated, board-ready slide deck and detailed report — every score traceable to the evidence behind it.
How does the assessment work?
Clients upload their own evidence — policies, reports and data. An AI interviewer asks targeted follow-ups to fill anything missing, the platform scores against the framework, ranks the gaps, and generates the deliverables.
Celeredge runs an independent readiness and alignment review against this framework. It is not a certification audit and is not endorsed by the standard's owner. Framework and standard names are trademarks of their respective owners.