NIST Announces: Draft NISTIR 8011, Automation Support for Security Control Assessments – Volume 1: Overview and Volume 2: Hardware Asset Management

Posted: 02/24/2016 | Leave a Comment

This NISTIR represents a joint effort between NIST and the Department of Homeland Security to provide an operational approach for automating security control assessments in order to facilitate information security continuous monitoring (ISCM), ongoing assessment, and ongoing security authorizations in a way that is consistent with the NIST Risk Management Framework overall and the guidance in NIST SPs 800-53 and 800-53A in particular.

Please note – this draft NISTIR (8011) has 2 volumes – Volume 1 – Overview, and Volume 2 – Hardware Asset Management. Both volumes can be accessed by going to the CSRC Drafts page – see link above.

Send comments to: sec-cert@nist.gov
Deadline to submit comments: MARCH 18, 2016

Website: http://csrc.nist.gov/publications/PubsDrafts.html#NIST-IR-8011

The DoD Cybersecurity Policy Chart

This chart captures the tremendous breadth of applicable policies, some of which many cybersecurity professionals may not even be aware, in a helpful organizational scheme.

View the Policy Chart

CSIAC Journal - Launching Innovation Through Medical Modeling and Simulation Technologies

This Special Edition of the Journal will provide a glimpse into current efforts to improve military medical training with simulation-based solutions.

Read the Journal

CSIAC Journal - Innovation Based Ecosystems

This issue of the Journal of Cyber Security & Information Systems explores how managing fast adoption modern-based system has more to do with understanding capabilities, interdependency between systems and effectively operating in the new paradigm than it has to do with differentiating product features.

Read the Journal