NIST’s Cybersecurity Framework provides a solid structure for managing threats and vulnerabilities; however, there is still “a paramount need to enhance the skillsets of cybersecurity practitioners, particularly in the functions of Respond and Recover,” according to Dennis Leber, PhD. In this piece, he talks about what it will take to close the gap.
“Layers of Complexity”: CISOs Share a Multifaceted Strategy for Managing Insider Threats
With technology environments becoming increasingly complex and insider threats becoming more prevalent, CISOs and other leaders must be “constantly looking for controls that help secure our staff and the systems they touch, regardless of where they work,” said our panelists during a recent discussion.
Menus and Cookbooks: Thoughts on NIST CSF and HICP
Contrary to popular belief, the various cybersecurity frameworks aren’t necessarily competing with each other, according to Nate Couture, CISO at The University of Vermont Health Network. In fact, “they result in very similar outcomes when all is said and done,” and in the case of HICP and NIST CSF, can be complementary to each other.