Search Publications

Displaying 226 - 250 of 2840

Guide to Enterprise Patch Management Planning: Preventive Maintenance for Technology

April 6, 2022

Author(s)

Murugiah Souppaya, Karen Scarfone

Enterprise patch management is the process of identifying, prioritizing, acquiring, installing, and verifying the installation of patches, updates, and upgrades throughout an organization. Patching is more important than ever because of the increasing

Improving Enterprise Patching for General IT Systems: Utilizing Existing Tools and Performing Processes in Better Ways

April 6, 2022

Author(s)

Murugiah Souppaya, Alper Kerman, Karen Scarfone, Kevin Stine, Brian E. Johnson, Chris Peloquin, Vanessa Ruffin, Tyler Diamond, Mark Simos, Sean Sweeney

Despite widespread recognition that patching is effective and attackers regularly exploit unpatched software, many organizations do not adequately patch. There are myriad reasons why, not the least of which are that it's resource-intensive and that the act

Basic Cybersecurity Recommendations for HVAC Systems- Passwords

April 1, 2022

Author(s)

Michael Galler

Cybersecurity has been a topic of increasing importance for several years. While fully securing a large and complex system can be very complicated, there are some basic precautions that can easily be applied to any system, and some basic precautions that

Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Ukrainian Translation)

March 30, 2022

Author(s)

Kevin Stine

Getting Started with the NIST Cybersecurity Framework: A Quick Start Guide (Portuguese Translation)

March 17, 2022

Author(s)

Amy Mahn, Stephen Quinn, Daniel Topper, Jeffrey Marron

Getting Started with the NIST Cybersecurity Framework: A Quick Start Guide (Spanish Translation)

March 17, 2022

Author(s)

Amy Mahn, Jeffrey Marron, Stephen Quinn, Daniel Topper

Assessing Enhanced Security Requirements for Controlled Unclassified Information

March 15, 2022

Author(s)

Ronald S. Ross, Victoria Yan Pillitteri, Kelley L. Dempsey

The protection of Controlled Unclassified Information (CUI) in nonfederal systems and organizations is important to federal agencies and can directly impact the ability of the Federal Government to successfully carry out its assigned missions and business

Framework for Improving Critical Infrastructure Cybersecurity, Version 1.0 (Polish translation)

February 23, 2022

Author(s)

Kevin Stine, Matthew Barrett

(This is a direct translation of Version 1.0 of the Cybersecurity Framework produced by the Government Centre for Security (Poland).)

Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Arabic translation)

February 23, 2022

Author(s)

Kevin Stine, Matthew Barrett

Translated by Ali A. AlHasan, PMP, CISSP,CISA, CGEIT, CRISC, CISM and Ali AlHajj. Reviewed by Schreiber Translations, INC (STI). Not an official U.S. Government translation.

Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Bulgarian translation)

February 23, 2022

Author(s)

Kevin Stine, Matthew Barrett

Translated by Professor Vladimir Dimitrov, University of Sofia, Bulgaria. Reviewed by Global Language Translation and Consulting (GLTac). Not an official U.S. Government translation.

Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (French Translation)

February 23, 2022

Author(s)

Kevin Stine

French translation of the Framework for Improving Critical Infrastructure Cybersecurity (Cybersecurity Framework) Version 1.1

Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Indonesian Translation)

February 23, 2022

Author(s)

Kevin Stine

Indonesian translation of the Framework for Improving Critical Infrastructure Cybersecurity (Cybersecurity Framework) Version 1.1

Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1 (Spanish translation)

February 23, 2022

Author(s)

Kevin Stine, Matthew Barrett

This Spanish language Cybersecurity Framework Version 1.1 was translated under government contract.