Privacy Engineering Program
Assessing Privacy Controls Workshop
As part of an ongoing series of workshops on privacy engineering and risk management, NIST will host a public workshop on May 18th in Gaithersburg, Maryland. NIST is seeking feedback from stakeholders on how to incorporate privacy, for the first time, into the upcoming revision of NIST Special Publication 800-53A, Assessing Security and Privacy Controls in Federal Information Systems.
Comment on Updated Risk Management Framework, Incorporating Privacy Considerations
RMF 2.0, formally titled Draft NIST Special Publication (SP) 800-37 Revision 2, is a guidance document designed to help organizations assess and manage risks to their information and systems. Previous versions were primarily concerned with cybersecurity protections from external threats. The updated version adds an overarching concern for individuals’ privacy, helping to ensure that organizations can better identify and respond to these risks.
Collaborate with NIST on Privacy Engineering
Explore the resources NIST has developed to help organizations manage privacy risk.
Find out about NIST events, how to engage with the Privacy Engineering Program team at conferences, and more.
Sign up for updates from the NIST Privacy Engineering Program by entering your contact information.