Over the last five years, many organizations have sought to define how cyber risk management should be implemented on ships, and the overwhelming consensus has been to follow the Cybersecurity Framework developed by the National Institute of Standards and Technology (NIST). Developed in 2014, the NIST framework defines five functional elements that create the backbone of a sound cyber risk management program. The framework was designed to be generic so it could be employed by any sector, ranging from financial or medical to transportation or security. With the help of the National Cybersecurity Center of Excellence (NCCoE), groups within the maritime industry have worked from this framework to develop additional guidelines and best practices.
News
In the news
January 26, 2018 |
NIST and the National Cybersecurity Center of Excellence (NCCoE) have been using Cooperative Research and Development Agreements (CRADAs) for joint cybersecurity efforts. Companies with relevant products were invited to sign a CRADA with NIST, allowing them to participate in a consortium to build this example solution. NIST aims to describe the process that brings together the collaborators in an open and transparent way.
In the news
January 24, 2018 |
On this episode of Women of Washington, host Gigi Schumm welcomed Donna Dodson, chief cybersecurity officer at the National Institute of Standards and Technology. Dodson also serves as associate director of the Information Technology Laboratory and director of the National Cybersecurity Center of Excellence.
In the news
January 23, 2018 |
The Center for Responsible Enterprise And Trade (CREATe.org) joins cybersecurity leaders as a member of the National Institute of Standards and Technology’s (NIST) National Cybersecurity Excellence Partnership (NCEP) at NIST’s National Cybersecurity Center of Excellence (NCCoE), a public-private initiative designed to advance the rapid adoption of cybersecurity capabilities to address business needs.
In the news
January 17, 2018 |
The National Institute of Standards and Technology's National Cybersecurity Center of Excellence is seeking comments on a newly released project on energy-sector asset management. The draft project aims to provide guidance to energy-sector companies on how to address vulnerabilities within industrial control systems that leave the sector open to “malicious” cyber attacks.
In the news
January 16, 2018 |
The federal government is looking to work with IoT device and networking vendors to demonstrate new security standards in practice, with the aim of better securing connected products used by consumers and small businesses against botnets and six other automated distributed threats. With that goal, the project, “Mitigating IoT-based Distributed Denial of Service (DDoS)” calls for vendors to leverage standards, specifically, the Manufacturer Usage Description (MUD) specification, and security best practices, to demonstrate a proposed approach for secured deployment of IoT devices in home and small enterprise networks.
In the news
January 04, 2018 |
The National Institute of Standards and Technology's National Cybersecurity Center of Excellence is calling for companies to provide products and expertise to support their project on transport layer security. This request, made in a Federal Register notice published last week, is a first step in a collaboration between the NCCoE and technology companies to address cybersecurity challenges found in the NIST NCCoE Transport Layer Security Server Certificate Management Building Block.
In the news
January 03, 2018 |
The National Institute of Standards and Technology’s National Cybersecurity Center of Excellence will develop a “practice guide” to help protect Internet of Things devices from botnet threats that leverages industry solutions, as part of the Trump administration’s broader effort to eliminate threats from botnets. The NCCoE is soliciting “products and technical expertise to support and demonstrate security platforms” for securing IoT from botnet threats, as part of the “Mitigating IoT-Based DDoS Building Block.” The cybersecurity center will accept “letters of interest” in participating in the initiative starting on Jan. 26, according to a Federal Register notice issued on Dec. 27.
In the news
January 02, 2018 |
A Commerce Department cybersecurity center wants to work with industry to combat botnets powered by internet-connected smart devices.
The goal is to enter into cooperative research and development agreements with companies and other organizations that can offer products and technical expertise that will make connected devices more secure, according to the late December notice from the National Cybersecurity Center of Excellence, located inside Commerce’s National Institute of Standards and Technology.
In the news
December 28, 2017 |
The National Institute of Standards and Technology has issued an invitation for commercial organizations to contribute technology platforms and technical expertise to help secure internet of things devices.
NIST said in a Federal Register notice posted Wednesday the agency’s National Cybersecurity Center of Excellence intends to partner with companies to identify methods to protect connected devices from distributed denial-of-service attacks through the Mitigating IoT-Based DDoS Building Block initiative.