Crossroads Blog | CYBER SECURITY LAW AND POLICY

NIST

NIST: The Cybersecurity Framework

National Insitute of Standards and Technology releases a video on the Cybersecurity Framework –> The Cybersecurity Framework

This is something we originally posted about back in 2013.

315

 


Opinion:

Regrettably, the four minutes and thirty-four seconds that I spent watching this video is time that should have been used otherwise.  I suppose if you knew that NIST had a cybersecurity framework and you wanted to watch a snippet that mentioned this fact then this clip would be spot on, if you are looking for a “how do I use this,” or “what do I do” guide then please do not click on the above link.  Instead, if you have any interest in understanding or potentially implementing the NIST cybersecurity framework, I recommend that you start with “Understanding and Implementing the NIST Cybersecurity Framework” article released via the Harvard Law School Forum on Corporate Governance and Financial Regulation.

It is vital to understand the problem from a high level and then to assess whether or not something such as the cybersecurity framework can be a tool that you can leverage in order to begin to qualify and quantify your cybersecurity status.  Following a thorough analysis you can subsequently apply a rigorous framework to address the accompanying threats.

Having completed the reading above, head back to NIST to their Cybersecurity Framework page, from which you can access a wide varieity of case studies, guidance, and educational resources which will help you develop a more thorough understanding not only of what the framework is but also how it can be used effectively and efficiently.

Finally, if you find you have four and a half minutes and nothing to do, check out the video, it is potentially more effective than counting sheep (your mileage may vary — YMMV).

 

Leave a Reply