The U.S. Commerce Department's National Institute of Standards and Technology (NIST) has released version 1.1 of its popular Framework for Improving Critical Infrastructure Cybersecurity, which can assist organizations in addressing cybersecurity as it affects the privacy of its customers, employees, and other parties. The American National Standards Institute (ANSI) encourages its members and relevant stakeholders to register for NIST's free public webcast and cybersecurity risk management conference, focused on the framework.
Cybersecurity breaches pose a challenge to all types of businesses, of all sizes. Threats to cybersecurity can prove costly, and can leave an organization's infrastructure and customer information vulnerable. It can also impede on business innovation and customer retention. NIST's framework was developed from feedback from stakeholders, government, industry, and academia related to such cybersecurity challenges. The updated framework provides a common organizing structure for multiple approaches to cybersecurity by assembling standards, guidelines, and practices that are working effectively today.
Framework for Improving Critical Infrastructure Cybersecurity Version 1.1 includes updates on:
- authentication and identity
- self-assessing cybersecurity risk
- managing cybersecurity within the supply chain
- vulnerability disclosure
ANSI encourages relevant stakeholders to register for NIST's free public Webcast, to explore Version 1.1 in detail, on April 27, 2018, at 1 p.m. Eastern time.
Additionally, NIST is planning a Cybersecurity Risk Management Conferencewhich will include a major focus on the frameworkfor November 6 to 8, 2018, in Baltimore. Detailed information on the conference will soon be available on the Cybersecurity Framework website.
Read the related article: As Cyber-threats Evolve, Standardization Organizations Resolve to Provide Updated Solutions