Government Technology

Harmonizing Cloud Cybersecurity Frameworks

Help is on the way for public sector agencies and cloud vendors struggling to reconcile multiple cybersecurity frameworks. The help is coming from StateRAMP, whose framework-harmonization initiative ...
Business Wire

AttackIQ Security Optimization Platform Validates NIST 800-53 Security Controls Against MITRE ATT&CK®, Verifying Effective Compliance and Aligning Preeminent Cybersecurity ...

SANTA CLARA, Calif.--(BUSINESS WIRE)--AttackIQ Ⓡ, the leading independent vendor of Breach and Attack Simulation (BAS) systems, today announced that its Security Optimization Platform can test the ...
TechRepublic

How to choose the right cybersecurity framework

Does your organization need NIST, CSC, ISO, or FAIR frameworks? Here's how to start making sense of security frameworks. Cybersecurity professionals often face the curse of knowledge–understanding so ...
VentureBeat

How to build a cloud security strategy that sells

Join our daily and weekly newsletters for the latest updates and exclusive content on industry-leading AI coverage. Learn More As the head of security at a cloud-forward organization, you are an info ...
Security

Cloud Security Alliance announces mappings between CCM and NIST's Cybersecurity Framework

This mapping serves to align CCM with CSF and to identify the equivalence, gaps, and misalignment between the control specifications of the two frameworks. “By expanding upon the CCM’s current mapping ...
Electronic Design

The Common Security Framework Foundation: Addressing Configuration Controls

When it comes to securing IT systems, NIST and other security frameworks often point to either of two public configuration standards: STIGs and the CIS Benchmarks. We have entered the era of multiple ...
Nextgov

DOD Recommends NIST Align Frameworks for Cybersecurity Risk Management

It’s time the National Institute of Standards and Technology point to how organizations should be assessing the risk they’re associating with systems when deciding what security controls to implement ...
CSOonline

Mapping Your Way To Compliance With Cybersecurity Frameworks

Organizations today need to comply with multiple policy, regulatory, and legal security frameworks. Complying with all of these frameworks can be difficult and time consuming. Your cybersecurity ...
Security

The Effective CISO Needs More Than a Control Framework

Chief Information Security Officers (CISOs) often talk about reducing the risk of financial loss to their organizations – whether it be through reducing the likelihood of unauthorized disclosure, ...
Finextra

SWIFT Customer Security Control Framework: how to remain compliant in 2022

In light of the increased number of cyberattacks on financial institutions utilising the SWIFT network, the financial messaging service provider launched the Customer Security Control Framework (CSCF) ...
Forbes

Why Your Security Controls Won’t Work In The Cloud

Security control frameworks like MITRE ATT&CK and the CIS Top 20 Controls can help you with hybrid security—but do they operate the same way in the cloud as they do on-premises, and will your nicely ...