Donna Dodson, Chief Cybersecurity Advisor for the IT Laboratory at the National Institute of Standards and Technology (NIST), reflected today on the success of the agency’s cybersecurity framework and its contributions to cyber interoperability.
“When you think about something like the cybersecurity framework, you start to understand what outcomes you’re looking for and then what standards help you get there,” she said at a Feb. 4 Center for Strategic and International Studies event.
“We do have to get a grip on this [interoperability] so that we are implementing the needed security controls throughout the organization in ways that meet both the business objectives and the security objectives at the same time. They’re not two separate objectives, as we’ve treated them in the past,” she said.
The value of NIST frameworks, she said, is letting organization create cybersecurity rules in a voluntary way. The framework gives stakeholders the right set of tools to have security conversations while keeping their respective business objectives in mind.
Read more at: Meri Talk