Cyber experts agree a technology supply chain security framework developed by the National Institute of Standards and Technology will be a useful tool for agencies and industry. They are less sure ...

Version 2.0 of NIST's Cybersecurity Framework, often cited by financial regulators, provides a structured approach to enhancing an institution's cybersecurity. The federal agency in charge of ...

The NIST Cybersecurity Framework’s comprehensiveness makes it the de facto standard across industries. However, the Framework has one major weakness: its guidelines can be particularly confusing for ...

The NIST Cybersecurity Framework, a sort of guidebook for good cybersecurity, has been adopted by about 30 percent of U.S. companies since its release three years ago and that number could reach 50 ...

Richard (Rick) P. Tracy is chief security officer and senior vice president at Telos Corporation, a continuous security solutions and services provider. It’s been three months since President Donald ...

NIST's CSF, used with other guidance, can help map risk to actual threats and better comply with security mandates such as the U.S.'s cybersecurity executive order. The U.S. federal government has ...

The privacy framework is modeled after the widely adopted, 5-year-old NIST Cybersecurity Framework, a voluntary set of guidance aimed to help mitigate cyber risk. In developing the privacy framework, ...

Whether a small, midsized or large organization, everyone can agree on one thing: Managing cyber risk is no easy feat. In the current landscape, especially, having a strong and reliable security ...