NIST Updates System-Plan Guidance for Security, Privacy, Supply Chain Risk

The National Institute of Standards and Technology (NIST) released updated system-planning guidance that broadens federal cybersecurity documentation to cover security, privacy, and cybersecurity supply chain risk management (C-SCRM).

The revision – titled Developing Security, Privacy, and Cybersecurity Supply Chain Risk Management Plans for Systems – consolidates information on how organizations develop and maintain key risk management documentation for information systems.

NIST said system plans consolidate information about assets, individuals, authorization boundaries, interconnected systems, data flows, responsible personnel, internal and external environments, and risk-management controls.

Read the rest of the story at MeriTalk.

The Government Technology & Services Coalition's Homeland Security Today (HSToday) is the premier news and information resource for the homeland security community, dedicated to elevating the discussions and insights that can support a safe and secure nation. A non-profit magazine and media platform, HSToday provides readers with the whole story, placing facts and comments in context to inform debate and drive realistic solutions to some of the nation’s most vexing security challenges.

Related Articles

Latest Articles