by Fuel HQ
In February 2014 the National Institute of Standards and Technology (NIST) released a Framework for Improving Critical Infrastructure Cybersecurity to help security organizations better protect information and physical assets from cyber attacks. The framework provided a structure that organizations, regulators and customers can use to improve comprehensive cybersecurity programs. Even though the Framework was released last year, the conversations continue about whether it is effective or if it is dynamic enough to handle changes in the landscape.
Last week Torsten George revisited the Framework in his article in Security Week, “Ultimately, the NIST Cybersecurity Framework provides some valuable building blocks for implementing better cyber security practices, but is not a silver bullet for preventing cyber-attacks and data breaches. It’s important to understand that guidelines and regulations are static by nature and therefore cannot evolve to detect and mitigate morphing threats.”
NIST’s Framework is also a recent topic on the Fuel Discussion Forums. One Fuel User posed the question: Are you using the NIST Cyber Security Framework? Are there other frameworks that you prefer?
Now it’s your turn – tell us your thoughts on NIST’s Cybersecurity Framework and share your preferences. Are there other industry standards that are more effective?