[fsn_row][fsn_column width="12"][fsn_text] You've heard it here before -- it's not a matter of if, but when. At that point it's less about penetration resistance of trying to keep the bad guys out of your network, but how to minimize the damage and get back up and running. In a second volume to the National Institute [...]
In August, NIST requested feedback from the owners and operators of the nation's critical infrastructure to understand how the Framework for Improving Critical Infrastructure Cybersecurity was being used and how it could be improved. Most of the responses posted by NIST were not from organizations running the infrastructure, but tech companies and industry associations. The [...]
In response to the 2013 Executive Order 13636 on Improving Critical Infrastructure Cybersecurity, the framework published in 2014 by NIST addresses improving resilience to cyber incidents and reducing cyber threats. While one solution can’t fit all, a core component of the framework is continuous monitoring. Scroll through the infographic below to see why continuous monitoring [...]
In today’s environment of advanced persistent threats it is essential for organizations to have near real-time knowledge of their enterprise IT infrastructure so responses to external and internal threats can be made swiftly. A successful continuous monitoring program provides visibility into assets, and leverages use of automated data feeds to quantify risk, ensure effectiveness of [...]
A day before another winter storm shut down Washington DC with up to a foot of snow, the National Institute of Standards and Technology released the first version of a long-awaited cybersecurity framework. The report follows several recent cyber-attacks that compromised more than 100 million customer records from major retailers. The framework was billed in [...]
NIST, the National Institute of Standards and Technology, held its fifth public workshop last week in Raleigh, North Carolina on a comprehensive cybersecurity framework mandated in a February 2012 executive order. The framework is designed to improve cybersecurity across sixteen critical infrastructure industries and build up from a basic core of functions based around the [...]
