NIST Drafts New Security Frameworks


GettyImages-1169668290(1).jpgWhen NIST speaks, TeamLogic IT listens, and encourages all businesses to do the same. NIST, of course, is the National Institute for Standards and Technology, whose renowned cybersecurity framework is central to our own IT service offerings. Throughout 2020, NIST is expected to release several updated security and risk management frameworks, with expert guidance that can be selectively integrated into enterprises large and small. Look into them when you get a chance and contact us if you have questions about NIST or its forthcoming updates to these security frameworks.

1: Security and Privacy Controls for Information Systems and Organizations. This “flagship” framework will receive its first big update in seven years, while continuing to shed light on a range of devices from IoT to general-purpose computers. Objectives for the new guidance include showing businesses how to make information systems more resistant to cyberattacks and protecting the security and privacy of information.

2: Managing the Security of Mobile Devices in the Enterprise, guidance which is designed to help organizations manage mobile device security threats. The publication outlines technologies and mitigation strategies, plus recommendations for secure deployment, use and disposal of mobile devices. 

3: Integrating Cybersecurity and Enterprise Risk Management. Addressing a wide range of risks, this guidance seeks to promote a greater understanding of the relationship between cybersecurity risk- management and overall risk. This will enable organizations to better identify, assess, and manage cybersecurity risks in the context of their broader mission and business objectives, NIST says. In the world of information security, NIST’s updates are a big deal for small companies. So stay tuned for what comes next.