web analytics

NIST

NIST
Computer Security Incident Handling Guide
Computer Security Incident Handling Guide
Recommendations of the National Institute of Standards and Technology Computer security incident response has become an...
GDPR
CYBERSECURITY INCIDENT RESPONSE PLAN 1
CYBERSECURITY INCIDENT RESPONSE PLAN 1
Purpose and Context: The CIRP establishes the necessary framework for responding to cybersecurity incidents, focusing on...
NIST
Artificial Intelligence Risk Management Framework
Artificial Intelligence Risk Management Framework
Generative Artificial Intelligence Profile The document "NIST AI 600-1, Artificial Intelligence Risk Management Framework: Generative Artificial...
NIST
NIST SP 800 Incident Response Recommendations and Considerations for Cybersecurity Risk Management
NIST SP 800 Incident Response Recommendations and Considerations for Cybersecurity Risk Management
Incident response is a critical part of cybersecurity risk management and should be integrated across organizational...
NIST
NIST Policy Template Guide
NIST Policy Template Guide
The Multi-State Information Sharing & Analysis Center (MS-ISAC) is offering this guide to participants of the...
NIST
NIST AI_Risk Management Framework Playbook
NIST AI_Risk Management Framework Playbook
The Playbook provides suggested actions for achieving the outcomes laid out inthe AI Risk Management Framework...
NIST
Implementing the Health Insurance Portability and Accountability Act(HIPAA) Security Rule
Implementing the Health Insurance Portability and Accountability Act(HIPAA) Security Rule
This publication aims to help educate readers about the security standards included in the Health Insurance...
NIST
Recovering from a Cybersecurity Incident
Recovering from a Cybersecurity Incident
Recover “The development and implementation of plans, processes and procedures for recovery and full restoration in...
NIST
Data Confidentiality: Identifying and Protecting Assets Against Data Breaches
Data Confidentiality: Identifying and Protecting Assets Against Data Breaches
In our data-driven world, organizations must prioritize cybersecurity as part of their business risk management strategy....
NIST
Guide to Malware Incident Prevention and Handling for Desktops and Laptops
Guide to Malware Incident Prevention and Handling for Desktops and Laptops
Malware, also known as malicious code, refers to a program that is covertly inserted into another...
NIST
NIST PHISH SCALE USER GUIDE
NIST PHISH SCALE USER GUIDE
Phishing cyber threats impact private and public sectors both in the United States and internationally. Embedded...
NIST
Data Classification Concepts and Considerations for Improving Data Protection
Data Classification Concepts and Considerations for Improving Data Protection
Data classification is the process an organization uses to characterize its data assets using persistent labels...
NIST
ATTACK CAMPAIGNS OF THE APT28 OPERATING MODE
ATTACK CAMPAIGNS OF THE APT28 OPERATING MODE
During its investigations, ANSSI analyzed several attack mode 1 compromise chains used for espionage including purposes....
NIST
AI RMFAI RMFPLAYBOOK
AI RMFAI RMFPLAYBOOK
AI systems may be subject to specific applicable legal and regulatoryrequirements. Some legal requirements can mandate...
NIST
NIST Interagency Report 8481 ipd
NIST Interagency Report 8481 ipd
Through a series of direct engagements with higher education cybersecurity and research security communities, as well...
NIST
Application Container Security Guide
Application Container Security Guide
Operating system (OS) virtualization provides a separate virtualized view of the OS to each application, thereby...
NIST
An Introduction to Information Security
An Introduction to Information Security
1.1 PurposeThis publication serves as a starting-point for those new to information security as well as...
NIST
Detecting and Responding to Ransomware
Detecting and Responding to Ransomware
The CIA triad represents the three pillars of information security: confidentiality, integrity, and availability, as follows....
NIST
Building a Cybersecurity and Privacy Learning Program
Building a Cybersecurity and Privacy Learning Program
This publication provides guidance for federal agencies and organizations to develop and manage a lifecycle approach...
NIST
Cybersecurity and Privacy Annual Report
Cybersecurity and Privacy Annual Report
Nelson Mandela famously said, “Remember to celebrate milestones as you prepare for the road ahead.”This year,...
NIST
The NIST Cybersecurity Framework 2.0
The NIST Cybersecurity Framework 2.0
Cybersecurity risks are a fundamental type of risk for all organizations to manage. Potential impacts to...
NIST
A Zero Trust Architecture Model for Access Control
A Zero Trust Architecture Model for Access Control
The principles of zero trust, as described in NIST Special Publication (SP) 800-207, havebecome the guiding...
NIST
Zero Trust Architecture
Zero Trust Architecture
Reports on Computer Systems TechnologyThe Information Technology Laboratory (ITL) at the National Institute of Standards and...
NIST
Strategies for the Integration of Software Supply Chain Security in DevSecOps CI/CD Pipelines
Strategies for the Integration of Software Supply Chain Security in DevSecOps CI/CD Pipelines
The predominant application architecture for cloud-native applications consists of multiple microservices with a centralized application infrastructure,...
NIST
NIST Cloud Computing Forensic Reference Architecture
NIST Cloud Computing Forensic Reference Architecture
This document summarizes research performed by the members of the NIST Cloud Computing Forensic Science Working...
NIST
NIST AI
NIST AI
This NIST AI report is intended to be a step toward developing a taxonomy and terminol-ogy...
NIST
Guide for Developing Security Plans by NIST
Guide for Developing Security Plans by NIST
Guide_for_Developing_Security_Plans_1654263507Descarga
NIST
Guide to a Secure Enterprise Network Landscape NIST SP 800-215
Guide to a Secure Enterprise Network Landscape NIST SP 800-215
Guide_to_a_Secure_Enterprise_Network_Landscape_1660433425Descarga
NIST
Automated Secure Configuration Guidance from the macOS Security Compliance Project (mSCP) – NIST Special Publication – NIST SP 800-219
Automated Secure Configuration Guidance from the macOS Security Compliance Project (mSCP) – NIST Special Publication – NIST SP 800-219
Executive SummaryThe National Institute of Standards and Technology (NIST) has traditionally published secureconfiguration guides for Apple...
NIST
National Initiative for Cybersecurity Education (NICE) – Cybersecurity Workforce Framework – NIST Special Publication 800-181
National Initiative for Cybersecurity Education (NICE) – Cybersecurity Workforce Framework – NIST Special Publication 800-181
AbstractThis publication describes the National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework (NICE Framework), a...

Latest News

securityweek.com
Rockwell PowerMonitor Vulnerabilities Allow Remote Hacking of Industrial Systems – Source: www.securityweek.com
Rockwell PowerMonitor Vulnerabilities Allow Remote Hacking of Industrial Systems – Source: www.securityweek.com
securityweek.com
How to Implement Impactful Security Benchmarks for Software Development Teams – Source: www.securityweek.com
How to Implement Impactful Security Benchmarks for Software Development Teams – Source: www.securityweek.com
securityweek.com
CISA Releases Mobile Security Guidance After Chinese Telecom Hacking – Source: www.securityweek.com
CISA Releases Mobile Security Guidance After Chinese Telecom Hacking – Source: www.securityweek.com
securityweek.com
Ukrainian Raccoon Infostealer Operator Sentenced to Prison in US – Source: www.securityweek.com
Ukrainian Raccoon Infostealer Operator Sentenced to Prison in US – Source: www.securityweek.com
The Hacker News
Thousands Download Malicious npm Libraries Impersonating Legitimate Tools – Source:thehackernews.com
Thousands Download Malicious npm Libraries Impersonating Legitimate Tools – Source:thehackernews.com
Krebs On Security
Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm – Source: krebsonsecurity.com
Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm – Source: krebsonsecurity.com