The flagship model for organizational cybersecurity policies just got a new coat of paint. The National Institute of Standards and Technology (NIST) on April 16 released version 1.1 of its Framework for Improving Critical Infrastructure Cybersecurity , which updates the agency’s original voluntary cybersecurity framework for critical infrastructure sectors issued in 2014. […]

A draft cybersecurity executive order would mandate a review of the most critical U.S. cyber vulnerabilities, the principal cyber adversaries of the U.S., ways to incentivize cybersecurity measures in the private sector, and the capabilities of the DoD, DHS, and the NSA.