A decade after releasing its landmark national cybersecurity framework, the National Institute of Standards and Technology on Monday released version 2.0, an updated document that emphasizes ...

The authors of the new Cyber Risk Management Program framework explain how it can set an organization up to better comply with SEC and other disclosure and reporting regulations. In a landmark ...

Cybersecurity is sometimes overlooked in modern commerce — its importance only acknowledged after an incident occurs. Any business reliant on computers, software and the internet needs to manage its ...

The Department of War’s shift to “Operational Speed” is a signal to the private sector: The age of the checklist is over.

Global cyberattacks have risen sharply over the last few years, increasing by 38% in 2022, according to Check Point. Combine this with the increasing cost of a data breach, averaging $9.44 million in ...

The message is that "risk management needs to be elevated to an enterprise-level, with key leadership involvement," Gartner's Katell Thielemann said. NIST is seeking feedback on this draft and the ...

Adam Stone writes on technology trends from Annapolis, Md., with a focus on government IT, military and first-responder technologies. The Pentagon plans to change the way it addresses cybersecurity ...

It’s time the National Institute of Standards and Technology point to how organizations should be assessing the risk they’re associating with systems when deciding what security controls to implement ...

The Army is launching Project Sentinel to adapt the current Risk Management Framework (RMF) process into a streamlined threat-informed risk decision process. The Army adopted the Risk Management ...