Cybersecurity Framework Overview: 2:00pm – 2:55pm ET -Click here to view the Overview Slides (PPT)
This presentation introduces the audience to the Framework for Improving Critical Infrastructure Cybersecurity (“The Framework”). NIST will provide a brief history about why and how the Framework was developed, and an understanding of each of the three primary Framework components (the Core, Implementation Tiers, and Profiles). Participants will gain an understanding of potential benefits of Framework, and how the Framework can be used. NIST will highlight industry resources, progress in Roadmap areas, and future direction of the Framework program. A Q&A session with participants will follow.
Break: 2:55pm – 3:00pm ET
Cybersecurity Framework Update: 3:00pm – 4:00pm ET - Click here to view Update Powerpoint Slides (PPT)
On January 10, 2017 NIST released proposed updates to the Cybersecurity Framework. This draft Version 1.1 of the Cybersecurity Framework seeks to clarify, refine, and enhance the Framework. Updates were derived from feedback NIST received since publication of Cybersecurity Framework Version 1.0.
More specifically, the draft revision (version 1.1) seeks to:
- Clarify use of Implementation Tiers and their relationship to Profiles
- Enhance guidance for applying the Framework for supply chain risk management
- Provide guidance on metrics and measurements using the Framework
- Add the concept of identity proofing and expands authorization
This presentation will provide the audience with an opportunity to further explore the proposed Framework updates. NIST will provide an understanding of what is proposed in the version 1.1 draft, and describe the process for finalizing the proposed updates, leaving plenty of time for questions and answers.
For more information, please visit our Cybersecurity Framework Homepage.