Home / News / Ron Ross: NIST Updates Security Control Evaluation Guidance to Match Continuous Monitoring Strategies

Ron Ross: NIST Updates Security Control Evaluation Guidance to Match Continuous Monitoring Strategies

Ron Ross
Ron Ross

The National Institute of Standards and Technology has published a new set of guidelines for evaluating security and privacy controls in federal information systems, GovInfoSecurity reported Monday.

Eric Chabrow writes Ron Ross, an NIST fellow, said the guide is designed to complement continuous monitoring and information security authorization programs across the government.

“We broke down the procedures so you can target a specific part of the control,” Ross added, according to the report.

Congress last week approved Federal Information Security Management Act changes aimed at helping agencies transition from a checkbox security method to the CM technique, according to Chabrow’s article.

Ross told the publication NIST is also working on a framework to allow the organization to update and publish control standards earlier than usual.

Check Also

Air Force Conducts F-35 Auto GCAS Test Flights

The U.S. Air Force’s 461st Flight Test Squadron has begun conducting test flights for the Automatic Ground Collision Avoidance System onboard the service’s F-35 aircraft, Edwards Air Force Base said Thursday.

Leave a Reply

Your email address will not be published. Required fields are marked *