Just ahead of the two-year anniversary, the National Institute for Standards and Technology is asking for feedback on how organizations are using its cybersecurity framework, a set of standards and best practices for securing critical networks.
NIST posted a request for information on the Federal Register asking for feedback on the "Framework for Improving Critical Infrastructure Cybersecurity," a comprehensive standards document created in 2014 in response to a presidential executive order.
FREE WEBCAST: FCC CIO David Bray discusses IT transformation Dec. 16.
The RFI includes 25 specific questions centered around five themes:
- The variety of ways in which the framework is being used to improve cybersecurity risk management.
- How best practices for using the framework are being shared.
- The relative value of different parts of the framework.
- The possible need for an update of the framework.
- Options for the long-term management of the framework.
The comment period will be open from Dec. 11 through Feb. 9.
Aaron Boyd is an awarding-winning journalist currently serving as editor of Federal Times — a Washington, D.C. institution covering federal workforce and contracting for more than 50 years — and Fifth Domain — a news and information hub focused on cybersecurity and cyberwar from a civilian, military and international perspective.
