From: MeriTalk
The National Institute of Standards and Technology (NIST) released the second draft of the proposed update to its Framework for Improving Critical Infrastructure Cybersecurity. The new draft aims to clarify, refine, and enhance the framework as well as “amplifying its value and making it easier to use,” NIST officials said.
The new draft comes on the heels of a White House executive order issued last May that directed heads of executive agencies or departments to use the NIST framework to manage their agencies’ cybersecurity risk. It also made them accountable for managing cybersecurity risk to their enterprises and directed them to lead integrated teams of senior executives with expertise in IT, security, budgeting, acquisition, law, privacy, and human resources to support their risk- management efforts under the framework.
Leave a Reply