Shows & Panels
Shows & Panels
- The 2014 Big Picture on Cyber Security
- AFCEA Answers
- American Readiness: Renewable Power and Efficiency Technologies
- Ask the CIO
- Building the Hybrid Cloud
- Connected Government: How to Build and Procure Network Services for the Future
- Continuing Diagnostics and Mitigation: Discussion of Progress and Next Steps
- Federal Executive Forum
- Federal News Radio's National Cyber Security Awareness Month Special Panel Discussion
- Federal Tech Talk
- The Future of Government Data Centers
- The Future of IT: How CIOs Can Enable the Service-Oriented Enterprise
- Government Perspectives on Mobility and the Cloud
- The Intersection: Where Technology Meets Transformation
- Maximizing ROI Through Data Center Consolidation
- Mitigating Insider Threats in Virtual & Cloud Environments
- Modern Mission Critical Series
- The New Generation of Database
- Reimagining the Next Generation of Government
- Targeting Advanced Threats: Proven Methods from Detection through Remediation
- Transformative Technology: Desktop Virtualization in Government
- The Truth About IT Opex and Software Defined Networking
- Air Traffic Management Transformation Report
- Cloud First Report
- General Dynamics IT Enterprise Center
- Gov Cloud Minute
- Government in Technology Series
- Homeland Security Cybersecurity Market Report
- National Cybersecurity Awareness Month
- Technology Insights
- The Cyber Security Report
- The Next Generation Cyber Security Experts
Shows & Panels
NIST rewrites FISMA standards as cyber threats evolve
Monday - 3/5/2012, 6:18pm EST
The National Institute of Standards and Technology has issued major revisions to the Federal Information Security Management Act, which governs agency information security policies.
The revamped FISMA includes new guidance for insider-threat management, supply-chain risk and mobile security.
"The changes we propose ... are directly linked to the current state of the threat space — the capabilities, intentions and targeting activities of adversaries — and analysis of attack data over time," said Ron Ross, a NIST fellow and the agency's FISMA implementation project leader.
Ross joined In Depth with Francis Rose to discuss the FISMA additions.
"This has been a really big update for us," Ross said. "It's been a year in the making, and we took a complete scrub of the entire security-control catalogue looking at the current threat space."
There is also the addition of a new appendix on privacy and privacy controls to better balance security needs and the privacy of individual users, he added.
"The threat space continues to move forward," Ross said. "We're looking at a lot of data on cyber attacks, capabilities, intentions, targeting by adversaries. All that information is used in a cycle to update our documents ... So, we're always going to be trying to bring the best defenses to our customer we possibly can."
This story is part of Federal News Radio's daily Cybersecurity Update. For more cybersecurity news, click here.