New publication fundamentally changes federal information security risk management

The National Institute of Standards and Technology (NIST) has published the final version of a special publication that can help organizations to more effectively integrate information security risk planning into their mission-critical functions and overall goals.Managing Information Security Risk: Organization, Mission, and Information System View (NIST Special Publication 800-39) provides the groundwork for a three-tiered, risk-management approach that "fundamentally changes how we manage information security risk at the federal level," says Ron Ross, NIST Fellow and one of the principal authors of the publication.For decades, organizations have managed risk at the information system level that resulted in a very narrow perspective that constrained risk-based decisions by senior management, Ross explains. SP 800-39 calls for a holistic approach in which senior leaders determine what needs to be protected based on the organization's core missions and business functions. For example, managers of a power plant

New publication fundamentally changes federal information security risk management

The National Institute of Standards and Technology (NIST) has published the final version of a special publication that can help organizations to more effectively integrate information security ...

Wed 2 Mar 11 from Phys.org

New Publication Fundamentally Changes Federal Information Security Risk Management, Wed 2 Mar 11 from RedOrbit

New publication fundamentally changes federal information security risk management, Wed 2 Mar 11 from R&D Mag

New publication fundamentally changes federal information security risk management, Wed 2 Mar 11 from Science Blog

New publication fundamentally changes federal information security risk management, Wed 2 Mar 11 from Eurekalert

  • Pages: 1

Bookmark

Bookmark and Share