In this post in our series on basic cybersecurity concepts for lawyers (see here and here for prior posts), we delve into the National Institute of Standards and Technology (NIST) Cybersecurity ...

The newest draft of the National Institute of Standards and Technologies' cybersecurity framework emphasizes integrating cybersecurity into companies' core governance functions and offers guidance on ...

The US National Institute of Standards and Technology (NIST) has released the latest draft of its well-regarded Cybersecurity Framework (CSF) this week, leaving companies to mull how a few significant ...

The National Institute of Standards and Technology (NIST) has released an update to its Cybersecurity Framework — the first since the guidance document was issued in 2014. Cybersecurity Framework (CSF ...

The National Institute of Standards and Technology (NIST) has released its updated Cybersecurity Framework 2.0 (CSF 2.0), a comprehensive overhaul designed to address the multifaceted challenges of ...

The US National Institute of Standards and Technology (NIST) has released a new draft version of its popular best practice security framework, designed to expand its scope and provide more guidance on ...

While NIST's newly updated Cybersecurity Framework didn't catch many cyber professionals by surprise, it reflects many of the modern risks that organizations face, whether it be because of new ...

The message is that "risk management needs to be elevated to an enterprise-level, with key leadership involvement," Gartner's Katell Thielemann said. NIST is seeking feedback on this draft and the ...

NIST seeks comments ahead of the 2024 release of CSF 2.0, which aims to appeal to a broader range of organizations while elevating the importance of corporate governance and more fully addressing ...

But, in general, the industry wants NIST to avoid making any changes at all to the choose-your-own-adventure document that has guided risk management and U.S. cybersecurity policy for almost a decade.