The U.S. National Institute of Standards and Technology’s Computer Security Resource Center published security control baselines and a privacy control baseline for federal government systems. The baselines were updated following a 2017 interagency review and ongoing analysis of cyberattack data. NIST is seeking public comment by Sept. 11. “In addition to the control baselines, this publication provides tailoring guidance and a set of working assumptions to help guide and inform the control selection process for organizations,” an announcement stated.
If you want to comment on this post, you need to login.