NIST engineering guide update provides advice for securing legacy IT systems

by Shaun Waterman • 1 day ago

Volume two of NIST SP-800-160 focuses on cyber resilience engineering.

DHS leaders push cybersecurity risk assessment program for critical infrastructure companies

by Chris Bing • 3 weeks ago

The program comes as DHS has moved to rid networks of products that could be used for nation-state led surveillance.

More than two years after historic breach, OPM continues to struggle with cybersecurity

by Chris Bing • 5 months ago

The agency's Inspector General said things haven't really gotten better since OPM's infamous breach.

No longer 'federal,' no longer exclusively 'cyber' — NIST security controls break out

by Shaun Waterman • 7 months ago

The National Institute of Standards and Technology has removed the word "federal" from the title of its magisterial catalogue of cybersecurity and privacy controls.

NIST moving forward, cautiously, on framework revisions

by Shaun Waterman • 8 months ago

NIST laid out their plans for an update of their cybersecurity framework, inching forward with a number of proposed changes to the draft they released in January.

Critics slam cyber-hygiene bill as redundant, confusing

by Shaun Waterman • 9 months ago

Critics say the bill, if passed, won't be effective because best practices are widely ignored.

Continue to CyberScoop.com