Updated NIST Guidance for Responding to Cyber Incidents
The National Institute of Standards and Technology has issued revised special publication 800-61, addressing new threats and potential attacks. The Federal Information Security Management Act (FISMA), requires agencies to have specific incident response plans and capabilities. The revised NIST guidance lists several steps that agencies should put in place including having an incident response team in place, creating a policy to guide the team’s actions, and developing a pre-determined approach to communicating the incident and response internally and externally.
The publication states, “Understanding threats and identifying modern attacks in their early stages is key to preventing subsequent compromises, and proactively sharing information among organizations regarding the signs of these attacks is an increasingly effective way to identify them.”
We agree with the idea of sharing information about attacks or attempted attacks to help strengthen organizations across an industry against hackers and fraudsters. For more information about how information sharing and continuous monitoring can help mitigate hacking and insider threats, please contact our specialists.
Recommended For You
Hackers. They steal and sell data, especially at the point of sale and during customer acquisition periods. No customer wants […]
The growth of identity fraud shows few signs of slowing and technology has enabled easier access to consumer data that […]
Fraudsters are a smart group. With each fraud prevention method that’s introduced, they figure out ways to work around it. […]
On February 9, 2016, the President implemented the Cybersecurity National Action Plan (CNAP) designed “to enhance cybersecurity awareness and protections, protect […]