NIST CyberSecurity Framework & NIICS- OCA Submission(s)


Jason Keirstead
 

Hello OCA PGB & Architecture members.

 

Please see below. NIST is looking at updates to the NIST CSF and is also seeking submissions on stakeholders for a new organization (National Initiative for Improving Cybersecurity in Supply Chains).

I believe OCA should consider submitting something to these efforts.


We can add this to the agenda of the PGB call next week. If members of the architecture working group have inputs they want to give the PGB in advance of that meeting, please lets share them on this email trail.

 

--

The National Institute of Standards and Technology (NIST) is seeking information to assist in evaluating and improving its cybersecurity resources, including the “Framework for Improving Critical Infrastructure Cybersecurity” (the “NIST Cybersecurity Framework,” “CSF” or “Framework”) and a variety of existing and potential standards, guidelines, and other information, including those relating to improving cybersecurity in supply chains. NIST is considering updating the NIST Cybersecurity Framework to account for the changing landscape of cybersecurity risks, technologies, and resources. In addition, NIST recently announced it would launch the National Initiative for Improving Cybersecurity in Supply Chains (NIICS) to address cybersecurity risks in supply chains. This wide-ranging public-private partnership will focus on identifying tools and guidance for technology developers and providers, as well as performance-oriented guidance for those acquiring such technology. To inform the direction of the NIICS, including how it might be aligned and integrated with the Cybersecurity Framework, NIST is requesting information that will support the identification and prioritization of supply chain-related cybersecurity needs across sectors. Responses to this RFI will inform a possible revision of the Cybersecurity Framework as well as the NIICS initiative.

 

https://www.federalregister.gov/documents/2022/02/22/2022-03642/evaluating-and-improving[…]y-resources-the-cybersecurity-framework-and-cybersecurity

 

 

 

-
Jason Keirstead
Distinguished Engineer, CTO - IBM Security Threat Management | www.ibm.com/security

Declare an Emergency: USA +1 888 241 9812, Global +1 312 212 8034

 

Assistant - Mauricio Durán Cambronero (mauduran@...)

See my calendar - https://ibm.biz/jkcalendar


Co-Chair - Open Cybersecurity Alliance, Project Governing Board

www.opencybersecurityalliance.org

 

Join oca-pgb@lists.oasis-open-projects.org to automatically receive all group messages.