Ron Ross: NIST Updates Security Control Evaluation Guidance to Match Continuous Monitoring Strategies

1 min read
Ron Ross
Ron Ross
Ron Ross

The National Institute of Standards and Technology has published a new set of guidelines for evaluating security and privacy controls in federal information systems, GovInfoSecurity reported Monday.

Eric Chabrow writes Ron Ross, an NIST fellow, said the guide is designed to complement continuous monitoring and information security authorization programs across the government.

“We broke down the procedures so you can target a specific part of the control,” Ross added, according to the report.

Congress last week approved Federal Information Security Management Act changes aimed at helping agencies transition from a checkbox security method to the CM technique, according to Chabrow’s article.

Ross told the publication NIST is also working on a framework to allow the organization to update and publish control standards earlier than usual.

ExecutiveGov Logo

Sign Up Now! Executive Gov provides you with Free Daily Updates and News Briefings about Government Technology

Leave a Reply

Your email address will not be published.