In The News

Below are the latest news stories highlighting the NCCoE. The following links to external websites are curated for your convenience. Inclusion of these stories does not imply NCCoE endorsement or responsibility for the content found on these external websites.

In the news
August 24, 2015  |  SANS Institute Newsletter

The US National Institute of Standards and Technology (NIST) has released "Identity and Access Management for Electric Utilities," a draft guide to cybersecurity for US electric utilities. The guide describes a centralized access control system developed by NIST's National Cybersecurity Center of Excellence's (NCCoE). NIST is accepting comments on the document until October 23, 2015. 

In the news
August 24, 2015  |  ComputerWorld

U.S. electric utilities should pay close attention to their authentication systems and access controls to reduce data breaches, a government agency says in a new cybersecurity guide.

About 5 percent of all cybersecurity incidents that the U.S. Department of Homeland Security's industrial control cyber team responded to in 2014 were tied to weak authentication, said the U.S. National Institute of Standards and Technology (NIST). Another four percent of industrial control incidents were related to abuses of access authority, the agency said.

In the news
August 24, 2015  |  CIO

U.S. electric utilities should pay close attention to their authentication systems and access controls to reduce data breaches, a government agency says in a new cybersecurity guide.

The new cybersecurity guide, released in draft form by NIST's National Cybersecurity Center of Excellence (NCCoE) Tuesday, focuses on helping energy companies reduce their cybersecurity risks by showing them how they can control access to facilities and devices from a single console.

In the news
August 16, 2015  |  ExecutiveBiz

The Maryland-based National Cybersecurity Center of Excellence is searching for industry sources to develop a cybersecurity system intended to help control access to information technology assets. 

Contractors would design three projects around access control, personal identity verification credentials and mobile devices, theNational Institute of Standards and Technology said Friday.

 
In the news
August 13, 2015  |  mHealthIntelligence

With more health records being stored on mobile devices, the need for mobile health security is imperative among doctors, nurses, and other medical professionals.

In the news
August 12, 2015  |  Corporate Counsel

NIST’s “Securing Electronic Health Records on Mobile Devices” gives organizations involved in the health care sector insights on how to design and implement security systems that protect the myriad personal and health information patients entrust them to collect and keep private. Although fairly technical, the guide helps focus organizations’ conversations around keeping electronic health records protected.

 

In the news
August 11, 2015  |  JDSupra

On July 22, the National Cybersecurity Center of Excellence (“NCCoE”), a U.S.

In the news
August 09, 2015  |  Lexology

As medical records are increasingly digitized, providers of health IT products and services and medical providers who store sensitive patient health information present tempting targets for attackers.  Medical providers now regularly use mobile devices in their practices, but NIST notes that “the use of mobile devices to store, access and transmit electronic health care records is outpacing the privacy and security protections on those devices.”  The Department of Health and Human Services maintains a 

In the news
August 09, 2015  |  Health IT Outcomes

The National Institute of Standards and Technology (NIST) has released a draft guide designed to help healthcare organizations increase mobile data security. The guide, NIST Cybersecurity Practice Guide, Special Publication 1800-1: Security Electronic Health Records on Mobile Devices, is a response to the growing need created by increasing use of smartphones and other mobile devices to transmit healthcare data.

In the news
August 04, 2015  |  Mondaq

On July 23, the National Institute of Standards and Technology (NIST) through its National Cybersecurity Center of Excellence (NCCoE) published a draft step-by-step practice guide on protecting medical information stored in and shared between mobile devices, such as tablets and smart phones. NIST issued a press release about the draft guide.