New NIST revisions expand scope of cyber supply chain risk management guidance
By 
Jaclyn Jaeger2021-05-20T18:04:00
The National Institute of Standards and Technology is seeking comment on a revised version of its cyber supply chain risk management guidance that is intended for a broader audience of public and private companies.
Related articles
-
ArticleBig week for breaches: McDonald’s, Carnival, and more
Multiple high-profile companies—including Carnival, Wegmans, McDonald’s, Volkswagen, and CVS—have confirmed in recent days they were either victims of a data breach or were alerted to a gap in their security controls.
-
ArticleNIST guidance tackles how to integrate cyber-security with ERM
New guidance from NIST aims to demystify a process with which many companies across all industries have long struggled: how to seamlessly integrate cyber-security risk into an overall enterprise risk management program.
-
ArticleNIST seeks comment on ransomware, cyber-attack guidance
The National Institute of Standards and Technology is seeking input on a trio of draft guidance published in the past week. Two of the drafts address ransomware attacks, and the third addresses protecting against cyber-attacks in the supply chain.
More from Risk Management
-
News BriefCOSO’s draft corporate governance framework provides roadmap to compliant business practices
Corporate governance is, all too often, handed down from generation to generation. Like a well-worn jacket, it works great—until it doesn’t. Typically, it is a crisis that forces companies to reassess their corporate governance framework, as gaps are filled and poor policies rewritten. But it doesn’t have to be that ...
-
News BriefInvestment scammers, other fraudsters scored billions from consumers in 2024, FTC reports
The public reported a 25 percent increase in losses–totaling more than $12.5 billion in 2024–to investment scams, tech rip-offs, and general fraud, according to an analysis by the Federal Trade Commission.
-
News BriefPortuguese bank ousts chief risk officer after ‘suspicious’ transactions uncovered
Portuguese bank Novo Banco, S.A., fired Chief Risk Officer Carlos Jorge Ferreira Brandão “with just cause” after an internal probe discovered “suspicious financial transactions” in his sphere.