“Donna Dodson, Chief Cybersecurity Advisor for the IT Laboratory at the National Institute of Standards and Technology (NIST), reflected today on the success of the agency’s cybersecurity framework and its contributions to cyber interoperability…”
“’We do have to get a grip on this [interoperability] so that we are implementing the needed security controls throughout the organization in ways that meet both the business objectives and the security objectives at the same time. They’re not two separate objectives, as we’ve treated them in the past,’ she said.”
“The value of NIST frameworks, she said, is letting organization create cybersecurity rules in a voluntary way. The framework gives stakeholders the right set of tools to have security conversations while keeping their respective business objectives in mind.”
“… Now, NIST is focusing on helping organizations balance cybersecurity and risk management alongside this framework. Dodson teased a forthcoming workshop that will explore ‘how we can bring better risk management into our world of technology and cybersecurity so it brings together the work that we’ve done…’” Read the full article here.
Source: NIST’s Dodson Emphasizes Value of Interoperability in Cyber Frameworks – February 5, 2020. MeriTalk.