Victoria Yan Pillitteri

Publications

Assessing Information Security Continuous Monitoring (ISCM) Programs: Developing an ISCM Program Assessment

May 21, 2020

Author(s)

Kelley L. Dempsey, Victoria Y. Pillitteri, Chad Baer, Robert Niemeyer, Ron Rudman, Susan Urban

This publication describes an approach for the development of Information Security Continuous Monitoring (ISCM) program assessments that can be used to evaluate

Approaches for Federal Agencies to Use the Cybersecurity Framework

March 19, 2020

Author(s)

Jeffrey A. Marron, Victoria Y. Pillitteri, Jon M. Boyens, Stephen D. Quinn, Gregory A. Witte, Larry Feldman

Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations

February 21, 2020

Author(s)

Ronald S. Ross, Victoria Y. Pillitteri, Kelley L. Dempsey, Mark Riddle, Gary Guissanie

The protection of Controlled Unclassified Information (CUI) resident in nonfederal systems and organizations is of paramount importance to federal agencies and

Developing Cyber Resilient Systems: A Systems Security Engineering Approach

November 27, 2019

Author(s)

Ronald S. Ross, Victoria Y. Pillitteri, Richard Graubart, Deborah Bodeau, Rosalie McQuaid

This publication is used in conjunction with ISO/IEC/IEEE 15288:2015, Systems and software engineering--Systems life cycle processes, NIST Special Publication

The Next Generation Risk Management Framework (RMF 2.0): A Holistic Methodology to Manage Information Security, Privacy and Supply Chain Risk

February 28, 2019

Author(s)

Victoria Y. Pillitteri

This bulletin summarizes the information found in NIST SP 800-37, Revision 2: Risk Management Framework for Information Systems and Organizations: A System Life

View more Publications