Close

Are you in compliance?

Don't miss out! Sign up today for our weekly newsletters and stay abreast of important GRC-related information and news.

×

Status message

Start your free, no obligation 5-day trial to continue exploring with full access.

NIST seeks comment on cyber-security framework update

Tammy Whitehouse | January 25, 2017

A leading framework for addressing cyber-security is getting an update, and the National Institutes of Standards and Technology is looking for input.

NIST has issued a draft update of its Framework for Improving Critical Infrastructure Cybersecurity with new details on managing cyber supply chain risks, clarifying key terms, and introducing measurement methods for cyber-security. The framework update is meant to further develop the voluntary steps that organizations can take to reduce their cyber-security risks.

The framework was initially published in February 2014 as a result of a presidential order meant to help protect the nation’s critical infrastructure, such as public utilities. It was developed based on input from industry, academia, and government agencies. The framework has since...

Buy this article for $49, or subscribe to Compliance Week for a month at $149 and get unlimited article access for 30 days.