A recent GAO audit report pointed out something that should come as no surprise: federal agencies face several challenges when it comes to cybersecurity. The challenges GAO cited include: Threats from ...

On April 3, NIST published practical incident response guidance aligned with its CSF 2.0 framework. The guidance outlines best practices in security incident preparation and response for organizations ...

The federal ecosystem was supplied with a new set of security standards on Tuesday aimed at protecting the unauthorized transmission of sensitive unclassified information that’s frequently exchanged ...

To combat escalating risks, numerous organizations look to the US National Institute of Standards and Technology (NIST) Cybersecurity Framework to protect their operational technology (OT) ...

The US National Institute of Standards and Technology (NIST) has updated its Privacy Framework to better align with its Cybersecurity Framework as the two become ...

Password security is changing — and updated guidelines from the National Institute of Standards and Technology (NIST) reject outdated practices in favor of more effective protections. Don't have time ...

The Health Information Trust Alliance unveiled additions to the ninth version of its common security framework. The HITRUST CSF is a comprehensive security framework that incorporates information ...

In this post in our series on basic cybersecurity concepts for lawyers (see here and here for prior posts), we delve into the National Institute of Standards and Technology (NIST) Cybersecurity ...

As far back as 2013, the federal government started directing resources toward protecting assets, organizations and technology deemed as critical infrastructure. While the definition of critical ...

The U.S. Department of Commerce’s National Institute of Standards and Technology released its National Initiative for Cybersecurity Education Cybersecurity Workforce Framework, also known as the NICE ...