From: FierceGovernmentIT

The National Institute of Standards and Technology has a slew of guidance coming down the pike for agencies. The first, a new risk assessment guideline should be ready in September 2011, said Ron Ross, NIST’s project leader of the FISMA implementation project. 

Information technology workers should also be on the lookout for a continuous monitoring guideline and an update to NIST SP 800-53 (.pdf), the security control catalog updated every 4 years, he said while speaking at a FedScoop event in Washington, D.C. Aug. 24. NIST also expects major cybersecurity guidance in 2012 on systems and security engineering, said Ross.