100 likes | 232 Views
Framework for Improving Critical Infrastructure Cybersecurity. NIST Feb 2014. Lots of Cyber Security Controls Sets (Now we have one more). HIPAA - Healthcare PCI - Credit Cards NIST 800-53 - US (. gov ) PCI - Credit Industry ISO 27001 - International . SAS 70/ SSAE -Public Corp
E N D
Framework for Improving Critical Infrastructure Cybersecurity NIST Feb 2014
Lots of Cyber Security Controls Sets(Now we have one more) • HIPAA - Healthcare • PCI - Credit Cards • NIST 800-53 - US (.gov) • PCI - Credit Industry • ISO 27001 - International • SAS 70/SSAE-Public Corp • NERC-CIP - Infrastructure • DIACAP - DoD (.mil) • TSA - Transportation • Cybersecurity Framework (newest)
Framework’s Primary Functions(A risk-based approach to managing cybersecurity risk) The Framework Core consists of five concurrent and continuous Functions: • Identify • Detect • Protect • Recover • Respond When considered together, these Functions provide a high-level, strategic view of the lifecycle of an organization’s management of cybersecurity risk.
References • http://www.whitehouse.gov/the-press-office/2013/02/12/executive-order-improving-critical-infrastructure-cybersecurity • http://www.nist.gov/cyberframework/index.cfm • http://ics-cert.us-cert.gov/Assessments