NIST Releases Updated Cyber and Privacy Guidance Draft

The government’s cybersecurity standards agency published a draft version of a major revision to its guidance on security and privacy controls for government and industry Tuesday.

Among other changes, the new document better integrates privacy and cyber controls, and better syncs those controls with recommendations in the National Institute of Standards and Technology’s cybersecurity framework, according to an introduction from NIST Fellow Ron Ross.

Federal agencies are now required to use the NIST framework as part of their information security plans, following a May executive order from President Donald Trump.

Continue reading: