EurekAlert!

2 publications recommend organization-wide IT security risk management

Two new draft publications from the National Institute of Standards and Technology (NIST) provide the groundwork for a three-tiered risk-management approach that encompasses computer security risk ...
Security

NIST issues major revision of Core Computer Security Guide: SP 800-53

The selection and implementation of security controls for information systems and organizations are important tasks that can have major implications on the operations and assets of organizations as ...
Network World

NIST SP800-53 Rev. 3: Risk Management Framework Underpins the Security Life Cycle

The National Institute of Standards and Technology (NIST) Special Publication (SP) SP 800-53 provides a unified information security framework to achieve information system security and effective risk ...
EurekAlert!

New publication fundamentally changes federal information security risk management

The National Institute of Standards and Technology (NIST) has published the final version of a special publication that can help organizations to more effectively integrate information security risk ...