NIST recently issued a Request for Information (RFI) asking for information that would improve the effectiveness of the Cybersecurity Framework (CSF) for a potential update. As a part of this initiative, NIST wants to better understand how the CSF is being used today and to learn what’s working and what’s not. NIST also wants to explore better ways to align the CSF with other NIST guidance, such as the Privacy Framework, Secure Software Development Framework, Risk Management Framework, NICE Workforce Framework, and its series on IoT cybersecurity. NIST wants to know what would help use these tools together more effectively. NIST also recently launched a public-private partnership, called the National Initiative for Improving Cybersecurity in Supply Chains (NIICS), to address supply chain cybersecurity risks. NIST is requesting information that will help identify supply-chain-related cybersecurity needs and harmonize the NIICS initiative with the CSF.
As NIST is considering these changes, it would like to hear from the Forum participants, including on the following questions:
We welcome speaker submissions on related topics, particularly on how Departments and Agencies are currently using the CSF. Please submit speaker submissions to sec-forum@nist.gov by March 14, 2022.
Starts: March 24, 2022 - 01:00 PM EDT
Ends: March 24, 2022 - 02:30 PM EDT
Format: Virtual Type: Forum
Attendance Type: Open to members,Government only,Government and their contractors only
Audience Type: Government,Academia
Virtual
Security and Privacy: cybersecurity supply chain risk management, privacy, risk management, security measurement, security programs & operations
Applications: cybersecurity framework