Contact Us

Continuity Insights Management Conference

NIST Unveils Final Report on Identifying Enterprise-Level Cybersecurity Risks

Continuity Insights

The National Institute of Standards and Technology (NIST) has released the final version of Identifying and Estimating Cybersecurity Risk for Enterprise Risk Management, supporting the agency’s report on integrating cybersecurity and enterprise risk management.

The report is intended to guide organizations on how to prioritize, manage and respond to cybersecurity risks within their ERM programs by illustrating methods for identifying and analyzing the severity of threats.

The report also highlights the importance of creating an enterprise risk register to properly document the potential impacts of cybersecurity risks on enterprise assets and develop an appropriate risk mitigation plan.

NIST is expected to release the draft of a third companion document detailing processes for oversight of cybersecurity risks for public comments in the coming weeks.

Read more.

Continuity Insights

Similar Articles

Real Cloud Security Challenges Facing Your Enterprise

Volume 1 of Symantic’s 2019 Cloud Security Threat Report (CSTR), “Adapting to the New Reality of Evolving Cloud Threats,” describes how organizations are adapting to evolving cloud threats, probing issues …

BCM Staff Development and Maintaining BCM Staff Readiness

Your BIAs are up to date. Your plans are perfect, down to the last detail. You’ve trained your executives, your business partners, the rank and file. But what about your …

Threat of New Ransomware Models is the Top Emerging Risk Facing Organizations

The threat of “new ransomware models” was the top concern facing executives in the third quarter of 2021, according to Gartner, Inc.’s latest Emerging Risks Monitor Report. Concerns about ransomware …

Leave a Comment

Share to...