The National Institute of Standards and Technology (NIST) issued for public comment a draft version of a cybersecurity framework implementation guide for federal agencies, in support of President Trump’s new cybersecurity executive order that requires federal agencies adopt the NIST framework.
The report illustrates eight use cases in which federal agencies can leverage the Cybersecurity Framework to address common cybersecurity-related responsibilities.
The eight use cases are:
- Integrate Enterprise and Cybersecurity Risk Management
- Manage Cybersecurity Requirements
- Integrate and Align Cybersecurity and Acquisition Processes
- Evaluate Organizational Cybersecurity
- Manage the Cybersecurity Program
- Maintain a Comprehensive Understanding of Cybersecurity Risk
- Report Cybersecurity Risks
- Inform the Tailoring Process
Comments are due by June 30, 2017.