home.aspx
 
. https://www.itgovernanceusa.com/blog/nist-seeks-feedback-on-its-updated-risk-management-framework/
blog article
NIST SEEKS FEEDBACK ON ITS UPDATED RISK MANAGEMENT FRAMEWORK
The National Institute of Standards and Technology (NIST) has released a draft of its update to the Risk Management Framework (RMF), designed to help federal agencies and companies safeguard their information systems from cyber threats. The update will help organizations respond appropriately to privacy risks, including the use of personally identifiable information. What’s included in the update? NIST Special Publication (SP) 800-37 Revision 2 provides cross-references outlining how the Cybersecurity Framework (CSF) aligns with current RMF steps. The update is intended to: Integrate privacy and security with systems development. Bring senior leaders closer to operations. Address supply chain-related concerns. Equip organizations with a process to select controls from the consolidated catalog for privacy and security controls. READ MORE