Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cybersecurity for R&D Request for Comment

Request for Comment

NIST is actively seeking input from institutions of higher education and other interested parties to support implementation of the research cybersecurity effort detailed in Section 10229 of the CHIPS and Science Act. The questions below are intended to help NIST identify an initial set of common challenges related to research cybersecurity at institutions of higher education and to develop potential cybersecurity resources (e.g., white papers, quick start guides) that could help to address identified challenges. 

Feedback and comments should be sent to cyber4R&D [at] preferably via this form by June 30, 2023.

Submitted comments – including attachments and other supporting materials – will become part of the public record and are subject to public disclosure. Personally identifiable information and confidential business information should not be included (e.g., account numbers, Social Security numbers, names of other individuals). Comments that contain profanity, vulgarity, threats, or other inappropriate language will not be posted or considered. 

Questions to Inform Potential Resources and Research Areas for NIST

  1. What common cybersecurity challenges and risks does your institution face when conducting research?
  2. Does your institution face unique cybersecurity challenges and risks associated with certain types of research, for example, microelectronics or other areas of science and technology?
  3. How is your institution identifying, assessing, managing, and reducing cybersecurity risks related to conducting research?
    1. How do NIST resources support cybersecurity risk management in your institution?
    2. What other resources does your institution leverage to support cybersecurity risk management?
  4. Are existing resources sufficient and effective? If not, why?
  5. What new resources or areas of further research might address common cybersecurity challenges and risks faced by faculty or researchers, students, academic or research affairs offices, and personnel with enterprise risk management responsibilities (e.g., Chief Information Officers, Chief Information Security Officers, Chief Privacy Officers, Chief Compliance Officers, Chief Risk Officers, and others)?
    1. What role might NIST play in providing resources and research to address common cybersecurity challenges and risks faced by these communities?
    2. Who should be involved in the development of these resources and research (e.g., researchers with institutional affiliation, research cybersecurity subject matter experts, or other associations or groups)? 

Related Content

Cybersecurity for R&D

Created April 6, 2023, Updated April 17, 2023