NIST engineering guide update provides advice for securing legacy IT systems
Volume two of NIST SP-800-160 focuses on cyber resilience engineering.
DHS leaders push cybersecurity risk assessment program for critical infrastructure companies
The program comes as DHS has moved to rid networks of products that could be used for nation-state led surveillance.
More than two years after historic breach, OPM continues to struggle with cybersecurity
The agency's Inspector General said things haven't really gotten better since OPM's infamous breach.
No longer 'federal,' no longer exclusively 'cyber' — NIST security controls break out
The National Institute of Standards and Technology has removed the word "federal" from the title of its magisterial catalogue of cybersecurity and privacy controls.
NIST moving forward, cautiously, on framework revisions
NIST laid out their plans for an update of their cybersecurity framework, inching forward with a number of proposed changes to the draft they released in January.
Critics slam cyber-hygiene bill as redundant, confusing
Critics say the bill, if passed, won't be effective because best practices are widely ignored.