U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

blue background with lighter blue icons like computers. Darker blue bar with white words reading: Celebrating 50 years of cybersecurity at NIST
Information Technology

Cybersecurity

Overview

NIST develops cybersecurity standards, guidelines, best practices, and other resources to meet the needs of U.S. industry, federal agencies and the broader public. Our activities range from producing specific information that organizations can put into practice immediately to longer-term research that anticipates advances in technologies and future challenges.

Some NIST cybersecurity assignments are defined by federal statutes, executive orders and policies. For example, the Office of Management and Budget (OMB) mandates that all federal agencies implement NIST’s cybersecurity standards and guidance for non-national security systems. Our cybersecurity activities also are driven by the needs of U.S. industry and the broader public. We engage vigorously with stakeholders to set priorities and ensure that our resources address the key issues that they face. 

NIST also advances understanding and improves the management of privacy risks, some of which relate directly to cybersecurity.

Priority areas to which NIST contributes – and plans to focus more on – include cryptography, education and workforce, emerging technologies, risk management, identity and access management, measurements, privacy, trustworthy networks and trustworthy platforms.

Additional details can be found in these brief and more detailed fact sheets.

Two recent cybersecurity supply chain projects are featured here: Executive Order 14028, Improving the Nation’s Cybersecurity and National Initiative for Improving Cybersecurity in Supply Chains.

Featured Content

Executive Order - Improving the Nation’s Cybersecurity
Computer Security Resource Center
Cybersecurity Framework
Journey to Cybersecurity Framework 2.0
Privacy Framework
Risk Management Framework
National Cybersecurity Center of Excellence
National Initiative for Cybersecurity Education (NICE)
Small Business Cybersecurity Corner
Cybersecurity for IoT
50th Anniversary of Cybersecurity at NIST
NIST Cybersecurity Program History and Timeline

The Research

Projects & Programs

Trustworthy Network of Things

Trustworthy Networks of Things

Ongoing
NIST is working with industry to design, standardize, test and foster adoption of network-centric approaches to protect IoT devices from the Internet and to
View All Projects/Programs

Additional Resources Links

Publications
Software
Awards
Stakeholder Engagement
International Resources
Ransomware Resources
Usable Cybersecurity

News

A shadowy figure stands among conveyor belts, which carry a number of brown packages.

NIST Updates Cybersecurity Guidance for Supply Chain Risk Management

A new update to the National Institute of Standards and Technology’s foundational cybersecurity supply chain risk management (C-SCRM) guidance aims to help organizations protect themselves as they acquire and use technology products and services.
Read more
Animation shows hands holding a phone showing the word "Connect," then an inbox, then a game screen.

Spotlight: The Cybersecurity and Privacy of BYOD (Bring Your Own Device)

Read more
Blue screen covered with lines ending in bright dots

Performance Measurement Guide for Information Security: Annotated Outline Available for Comment

Read more
Stock image showing various cybersecurity icons such as security lock , shield, retinal scan, email

Winners Announced in First Phase of UK-US Privacy-Enhancing Technologies Prize Challenges

Read more
Protecting Your Small Business: Phishing
Protecting Your Small Business: Phishing
In this animated story, a business manager receives an urgent email from what she believes to be her bank. Before she clicks an included web link, a business colleague alerts her to possible harm from a phishing attack. Learn about common types of phishing messages and why any business owner or employee needs to be vigilant against their danger. This video also helps the viewer learn how to stay prepared, get helpful information, and find support from NIST’s Small Business Cybersecurity Corner website. For the NIST Small Business Cybersecurity Corner: https://www.nist.gov/itl/smallbusinesscyber
Protecting Your Small Business: Ransomware
Protecting Your Small Business: Ransomware
In this animated story, two professionals discuss ransomware attacks and the impacts it can have on small businesses. Since ransomware is a common threat for small businesses, this video provides an example of how ransomware attacks can happen—along with how to stay prepared, get helpful information, and find support from NIST’s Small Business Cybersecurity Corner website. For the NIST Small Business Cybersecurity Corner: https://www.nist.gov/itl/smallbusinesscyber To see more NIST ransomware resources: https://csrc.nist.gov/projects/ransomware-protection-and-response

Cybersecurity Insights Blog

CCAW Banner With Date 2022

Student Insights on Cybersecurity Careers

Hi, our names are Aubrie, Kyle, and Lindsey! We participated in internships at the National Initiative for Cybersecurity Education (NICE) Program Office this

Events

Cybersecurity Measurement Workshop

Tue, Dec 13 2022, 11:00am - 1:30pm EST
The NIST Cybersecurity Risk Analytics Team is hosting a workshop to provide an overview of the proposed changes for

Stay in Touch

Sign up for our newsletter to stay up to date with the latest research, trends, and news for Cybersecurity.