Building More Secure Information Systems
- Published:
- Presentations and Seminars
- Author(s) and Contributors:
-
Speaker(s): Ron Ross
- Source(s) and Collection(s):
-
Presentation(s): Cybersecurity Summits
- ParentTopics:
Abstract
The National Institute of Standards and Technology (NIST) is leading the development of key information security standards and guidelines as part of its Federal Information Security Management Act (FISMA) Implementation Project. This high-priority project includes the development of security categorization standards; minimum security requirements standards; and guidelines for the selection of minimum or baseline security controls for information systems, assessing the effectiveness of security control, and the security certification and accreditation of information systems. This session covers NIST publications and how they can be integrated into a comprehensive, risked-based, enterprise information security program.