A previous installment discussed the centrality of network topology to an organization’s data security and outlined the legal framework and obligations incumbent upon many organizations in the U.S.

This mapping serves to align CCM with CSF and to identify the equivalence, gaps, and misalignment between the control specifications of the two frameworks. “By expanding upon the CCM’s current mapping ...

SAN FRANCISCO--(BUSINESS WIRE)--RSA Conference--The Cloud Security Alliance (CSA), the world’s leading organization dedicated to defining standards, certifications, and best practices to help ensure a ...

NIST's CSF, used with other guidance, can help map risk to actual threats and better comply with security mandates such as the U.S.'s cybersecurity executive order. The U.S. federal government has ...

The National Institute of Standards and Technology (NIST) has released its updated Cybersecurity Framework 2.0 (CSF 2.0), a comprehensive overhaul designed to address the multifaceted challenges of ...

After releasing the first version of its Cybersecurity Framework in 2014, the National Institute of Standards and Technology (NIST) has released its first update to the guidance document.

But, in general, the industry wants NIST to avoid making any changes at all to the choose-your-own-adventure document that has guided risk management and U.S. cybersecurity policy for almost a decade.

SCHAUMBURG, Ill.--(BUSINESS WIRE)--Enterprises seeking to better manage their information and technology (I&T) risk by integrating cybersecurity standards and enterprise governance can look to the ...

The dramatic rise in ransomware attacks and the SolarWinds Orion hack have thrust cybersecurity back into the spotlight. With everyone a target, it's time for organizations to implement cybersecurity ...