NIST Cybersecurity Framework

The National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF) Regulation is a new set of regulations from the U.S. Department of Commerce for the cybersecurity requirements to be applied at all K-12 Schools. No later than December 30th, 2019 all school districts and institutions are expected to adopt and publish a data security and privacy policy based on the requirements in the NIST CSF Regulation.

Who Needs to Comply?

The NIST CSF Regulation applies to all K-12 school districts and institutions.

When Do I Need to Comply?

On or before December 30th, 2019 - The U.S. Department of Commerce expects all schools and institutions to have the NIST CSF Regulations.

What Do I Need to Do?

1. NIST CSF Gap Analysis

A structured process to compare your institution against the NIST Cybersecurity Frame work.

This identifies gaps that need to be addressed in your policy or in your IT setup.

2. Data Security Policy​​

Draft a policy that addresses your gaps and meets the regulatory requirements.​​

3. Prioritized Project Plan

Based on your gaps, create a plan of action for implementing the technical and cybersecurity changes as required.

4. Board of Education

​Based on the need it may need to be presented to the school board.


Micro Solutions is here to help you become compliant and/or stay compliant. You can download our free gap assessment on the regulations and identify the areas within your schools current policy that need further attention.

If you just want to find out more about the NIST CSF regulation enter your information below and download our white paper.

NIST Cybersecurity

I would like more information about: (Select all that apply)

If you have any additional questions or would like further help please feel free to contact us.