The launch of NIST CSF 2.0 introduces a range of welcome additions to v1.1 - it's easier to use, considers modern and evolving risks, and focusses on the importance of governance.

To assist cyber teams in the transition, Skylight Cyber have developed a free tool to convert v1.1 scores to 2.0 to establish a baseline score in readiness for full conversion.

Access the Free tool now
First name (required)
Last name (required)
Company (required)
Email (required)
Oops! Something went wrong while submitting the form.

About the Tool

Tool Outcomes   

Establish new 2.0 baseline scores without a complete assessment.

Self-assess the 16 new sub-categories only, instead of the full 106.

Identify key areas to focus your cyber security uplift on against the new framework.

Who is this for

Cyber Risk & Strategy Leads

Commence the transition to NIST 2.0 without a full assessment.

Cybersecurity & IT Managers

Gain actionable knowledge on key focus areas.

C-Suite & Board Members

Understand key security concerns and how they impact your organisation’s risk profile. 

About the Authors

Jennifer Vu

Head of Advisory Services

Jennifer is the Head of Advisory Services and leads the cyber strategy and GRC capability at Skylight Cyber.

 
As an experienced cyber security consultant, she specialises in delivering pragmatic and risk-driven cyber security strategies, assessments and cyber risk management services to her clients. Jennifer has engaged with CISOs and cyber security teams to build their security organisations and successfully gain funding for their programs. She also has experience in getting into the weeds of cyber risk management to design, implement and run client's GRC processes and capabilities.


Additionally, in her most recent previous role at NSW Government, she has helped create the 2021 NSW Cyber Security Strategy and led the development and delivery of the first NSW government-wide training sessions for executives and senior management across all departments of NSW government.


 Jennifer holds a Bachelor of Information Systems (Co-op) (Honours) from the University of New South Wales (UNSW).

Learn more

Jimmy Hong

Advisory Services Senior Consultant

Jimmy is a senior cyber security and strategy consultant, specialising in cyber risk management and governance, and cyber security strategy. He excels in customising critical industry standards such as the ISM, ACSC Essential Eight, ISO 27001, and NIST to align with the unique needs of client organisations, as well as a deep understanding of regulatory compliance requirements such as GDPR and PDPA. This ensures their cybersecurity strategies are effective and well-integrated with business objectives.

Additionally, Jimmy is skilled in information security contractual negotiations and third-party risk management, providing comprehensive safeguards and compliance strategies for organisations.


Jimmy’s consultancy work covers a broad spectrum of sectors, including government agencies, private entities, and global financial institutions. His impact is noted with significant contributions for clients across Australia, Europe, and Asia.


 He holds a Bachelor and Master of Electrical Engineering with a focus in Telecommunications from the University of New South Wales.

Learn more

Mischa Tanne

Advisory Services Senior Consultant

Mischa is senior cyber security consultant with comprehensive experience delivering governance, risk, and compliance engagements. He has worked with clients to assist them in complying with industry standards and frameworks as well as regulations and laws, including ISO 27001, NIST CSF, ACSC Essential Eight, and GDPR. Mischa has also served as a vCISO, acting as the client’s on-call cyber security expert while also coordinating efforts to increase security practically. Mischa always makes an emphasis to provide business-led cyber security advice in order to provide practical advice to uplift maturity that has the most benefit.


Mischa’s consulting experience has included engagements with national, state, and local governments, public, and private sector clients, across both the APAC and EMEA regions.


He holds a Bachelor of Economics and a Bachelor of Art from the University of Sydney with majors in Econometrics, Financial Economics, and Political Economy. In his focus on continual development, he has also attained industry certifications including CompTIA Security+, and ISC2 Certified in Cybersecurity.

Learn more

About Skylight Cyber  

Skylight Cyber is an Australia based cyber security company specialising in cyber security services that focus on the prism of sophisticated threat actors. 

Skylight is a trusted advisor to Fortune 500 organisations globally in a variety of industries including Financial Services, Travel and Technology and is often called upon to solve unique security challenges. 

OUR HEADQUARTERS
Level 30
201 Elizabeth Street
Sydney
NSW 2000
Australia
Open the map

Get in touch

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.