New NIST revisions expand scope of cyber supply chain risk management guidance
By 
Jaclyn Jaeger2021-05-20T18:04:00
The National Institute of Standards and Technology is seeking comment on a revised version of its cyber supply chain risk management guidance that is intended for a broader audience of public and private companies.
Related articles
-
ArticleBig week for breaches: McDonald’s, Carnival, and more
Multiple high-profile companies—including Carnival, Wegmans, McDonald’s, Volkswagen, and CVS—have confirmed in recent days they were either victims of a data breach or were alerted to a gap in their security controls.
-
ArticleNIST guidance tackles how to integrate cyber-security with ERM
New guidance from NIST aims to demystify a process with which many companies across all industries have long struggled: how to seamlessly integrate cyber-security risk into an overall enterprise risk management program.
-
ArticleNIST seeks comment on ransomware, cyber-attack guidance
The National Institute of Standards and Technology is seeking input on a trio of draft guidance published in the past week. Two of the drafts address ransomware attacks, and the third addresses protecting against cyber-attacks in the supply chain.
More from Risk Management
-
News BriefFederal Reserve Board drops reputational risk from exams, aligning with OCC and FDIC shift
Bank examiners at the Federal Reserve Board will no longer assess reputational risk during examinations, a concession to the banking industry already underway with two other U.S. regulators.
-
News BriefCOSO’s draft corporate governance framework provides roadmap to compliant business practices
Corporate governance is, all too often, handed down from generation to generation. Like a well-worn jacket, it works great—until it doesn’t. Typically, it is a crisis that forces companies to reassess their corporate governance framework, as gaps are filled and poor policies rewritten. But it doesn’t have to be that ...
-
News BriefInvestment scammers, other fraudsters scored billions from consumers in 2024, FTC reports
The public reported a 25 percent increase in losses–totaling more than $12.5 billion in 2024–to investment scams, tech rip-offs, and general fraud, according to an analysis by the Federal Trade Commission.