NIST has released Special Publication (SP) 800-172A, Assessing Enhanced Security Requirements for Controlled Unclassified Information, to support the protection of controlled unclassified information ...
Special Publication 800-30 Revision 1, Guide for Conducting Risk Assessments, provides direction for conducting risk assessments and amplifies the guidance found in SP 800-39: Managing Information ...
Two cybersecurity compliance and conformance programs - Underwriters Laboratory (UL) 2090 Cybersecurity Assurance Program and the National Institute of Standards and Technology (NIST) Cybersecurity ...
NIST's Ron Ross, one of the world's top information risk thought leaders, says new guidance he co-wrote doesn't dictate how organizations must approach risk assessment, but gives enterprises options ...
The National Institute of Standards and Technology issued its newest and final copy of guidance for organizations to assess their internal security IT systems, following a draft copy and comment ...
The National Institute of Standards and Technology finalized assessment procedures to correspond with updated information system security and privacy controls, in its latest special publication ...
SANTA CLARA, Calif.--(BUSINESS WIRE)--AttackIQ®, the leading independent vendor of breach and attack simulation solutions and a founding research partner of the MITRE Engenuity Center for ...
Cybersecurity has been an increasingly important compliance area for government contractors for more than a decade. Over the past year, the U.S. Department of Defense (DOD) has been laying the ...
Two new volumes were released by the National Institute of Standards and Technology that aim to broaden the publication’s applicability to organizations outside federal agencies. The National ...
The U.S. government is under pressure to improve cybersecurity and is meeting that challenge with a commitment to substantially enhance spending for protecting IT systems. The Obama administration ...
The treasure trove of valuable client data residing inside of law firms—such as financial information related to potential corporate transactions and confidential litigation documents or trade secrets ...
The National Institute for Standards and Technology has published a draft questionnaire that companies and other organizations can use to assess their cybersecurity “maturity” — a response, NIST says, ...