Topics:

NIST drafts cybersecurity guidance

November 24, 2009 | By Judi Hasson

Tools

The National Institute of Standards and Technology (NIST) is working on a plan for government agencies to adopt a comprehensive approach to cybersecurity. NIST is planning to issue its cybersecurity guidance early next year. It will require agencies to carry out risk management evaluations for the entire life of an IT contract. "This is part of a larger strategy to try to do more on the front end of security as opposed to just on the back end," NIST's Ron Ross, who is in charge of FISMA guidance at the agency, tells InformationWeek.com. "We don't think of security as a separate undertaking, but as a consideration we make in our normal lifecycle processes."

For more on NIST's cybersecurity plans:
- see this InformationWeek.com article

Filed Under

cybersecurity, federal agencies, NIST

Comments

View the discussion thread.

Popular Stories

THE LIBRARY: WEBINAR

Coping with Consumerization - Managing Mobile Devices in Federal Agencies

| Now on demand | Sponsored by Centrify

Smart mobile devices are clearly on their way to pervasiveness in federal agencies. The notion that the government can adopt consumer technology on its own terms - that individual employees can even bring their own devices - is gaining once unthinkable currency. But as mobile devices turn from dream into reality, questions of management and policy arise. Strong cybersecurity obviously is a necessity - but how much security such as logon timeouts can users accept before they start attempting to circumvent it? Will system managers be able to track the location of devices 24 hours a day - and so also know where the employee using them also is? If devices are BYOD, how can agencies be certain that matters such as loss and theft are reported quickly enough, especially if the standard policy response is to remotely wipe a missing device? Watch now.

MORE ITEMS

Latest Commentary

No need to rush to thin client

How Congress fear mongers cybersecurity

Three letters Steven VanRoekel won’t say…yet UPDATED

Time for a new DoD memo on open source

Play Chinese hacker cliche bingo with taxpayer-funded report

Management of ChangeJune 3-5 — Cambridge, MD
The ACT-IAC AcademyMay 16, June 13
info360 Conference & ExpoJune 12-14 — New York

MORE EVENTS

Topics:

NIST drafts cybersecurity guidance

Filed Under

Comments

Popular Stories

THE LIBRARY: WEBINAR

Latest Commentary

EVENTS

Press Releases

Featured Jobs

Sponsored Links

A publication of FierceMarkets

The FierceMarkets Network:

Telecom

Healthcare

Government

Energy

Life Sciences

Enterprise IT

Finance

Topics:

NIST drafts cybersecurity guidance

Filed Under

Comments

Join 22,000+ Insiders SIGN UP FOR OUR NEWSLETTER

Popular Stories

THE LIBRARY: WEBINAR

Latest Commentary

EVENTS

Press Releases

Featured Jobs

Sponsored Links

A publication of FierceMarkets

The FierceMarkets Network:

Telecom

Healthcare

Government

Energy

Life Sciences

Enterprise IT

Finance