It's a marriage between the NIST cybersecurity the MITRE ATT&CK frameworks.

RSA Public Sector was full of discussions on why federal cybersecurity needs to be simplified. How to get there? The opinions differ.

U.S. senators have raised security concerns about a new Metro railcar project. The NIST cybersecurity framework will be part of the process now, the transit authority says.

Japanese companies use two U.S. government technology frameworks to help manage its own information security manpower shortages.

RSA CTO Zulfikar Ramzan talks with CyberScoop on how many enterprises have come to rely on NIST's seminal cybersecurity document.

The new version updates the federal agency's guidelines in several areas, including authentication and identity; cyber risk self-assessments; managing supply chain cybersecurity; and vulnerability disclosure.