Home / News / Ron Ross: NIST Updates Security Control Evaluation Guidance to Match Continuous Monitoring Strategies

Ron Ross: NIST Updates Security Control Evaluation Guidance to Match Continuous Monitoring Strategies

Ron Ross
Ron Ross

The National Institute of Standards and Technology has published a new set of guidelines for evaluating security and privacy controls in federal information systems, GovInfoSecurity reported Monday.

Eric Chabrow writes Ron Ross, an NIST fellow, said the guide is designed to complement continuous monitoring and information security authorization programs across the government.

“We broke down the procedures so you can target a specific part of the control,” Ross added, according to the report.

Congress last week approved Federal Information Security Management Act changes aimed at helping agencies transition from a checkbox security method to the CM technique, according to Chabrow’s article.

Ross told the publication NIST is also working on a framework to allow the organization to update and publish control standards earlier than usual.

Check Also

GAO: Air Force to Deploy New Combat Rescue Helicopters to Active Component by FY 2020

The Government Accountability Office has found that the U.S. Air Force intends to start fielding in fiscal 2020 new Combat Rescue Helicopters to replace aging HH-60G Pave Hawk helicopters that have recorded the most flight time when it comes to staff recovery missions. GAO said in a report published Thursday the service will initially deploy the new helicopters to the active component six years ahead of the reserve component and to the Air National Guard by 2027.

Leave a Reply

Your email address will not be published. Required fields are marked *