The Government Accountability Office (GAO) issued a report Thursday that found many Federal agencies are not entirely up to speed in classifying members of their cybersecurity workforce, although many of them have traveled well down the road toward compliance. […]

The flagship model for organizational cybersecurity policies just got a new coat of paint. The National Institute of Standards and Technology (NIST) on April 16 released version 1.1 of its Framework for Improving Critical Infrastructure Cybersecurity , which updates the agency’s original voluntary cybersecurity framework for critical infrastructure sectors issued in 2014.






[…]

The Federal government invests $150 billion annually in Federal research and development. And the National Institute of Standards and Technology (NIST) wants to make sure the Federal government–and taxpayers–are getting the best return on investment (ROI) possible.






[…]

Last week, the National Institute of Standards and Technology (NIST) revealed the initial public draft of its Special Publication 800-160 Volume 2, Systems Security Engineering: Cyber Resiliency Considerations for the Engineering of Trustworthy Secure Systems.






[…]

The National Institute of Standards and Technology (NIST) is seeking nominations for new members of various Federal boards, including the Information Security and Privacy Advisory Board (ISPAB). NIST listed the eight Federal advisory boards with openings, which also include the NIST Smart Grid Committee, and the Visiting Committee on Advanced Technology, in a Federal Register notice.






[…]

As we barrel into Valentine’s Day, seems industry is falling in love again with NIST’s cyber framework makeover. Business groups and the tech sector reacted favorably to the latest update to the National Institute of Standards and Technology (NIST) Framework for Improving Critical Infrastructure, but noted more work needs to be done in several key areas.






[…]

The rising frequency and intensity of cyberattacks on information technology systems that support the government, military, businesses, and critical infrastructure has raised awareness among senior Federal agency managers that security controls cannot be bolted on to systems as an afterthought. Security must be a core part of the design of systems from the beginning, and considered throughout the development lifecycle.






[…]

If you’re looking for reference material on domestic sludge, gold nanoparticles, or peanut butter, a move by the National Institute of Standards and Technology (NIST) to modernize its e-commerce portal should make it easier to get the information you’re seeking.






[…]

Password manager company, Dashlane, has added a twist with its list of the “Worst Password Offenders” of 2017, naming high-profile people and organizations that fell into the bad-password trap. President Trump was deemed the worst offender, primarily because of simple passwords reportedly used by cabinet members and policy directors. Outside parties were also the culprits for the Department of Defense, specifically for its contractor, Booz Allen, as well as the Republican Party (stemming from a careless data analytics firm). Paul Manafort, for using “Bond007” as a password, and Sean Spicer, for apparently tweeting his passwords, also came in for scorn.






[…]

1 2 3 6