The National Institute of Standards and Technology has published a draft guide on how to achieve cyber resiliency across information technology systems.
NIST said Wednesday the guideline titled “Systems Security Engineering: Cyber Resiliency Considerations for the Engineering of Trustworthy Secure Systems” intends to address cyber resiliency issues relevant to organizations that are developing new IT systems as well as entities that are operating legacy IT platforms.
The document is the first in a series of publications that NIST developed to support the agency’s flagship systems security engineering guideline called “Systems Security Engineering: Considerations for a Multidisciplinary Approach in the Engineering of Trustworthy Secure Systems.”
Cyber resilient systems feature built-in security safeguards in the system architecture and design, NIST noted.
Those platforms demonstrate the capacity to withstand cyber attacks and continue to operate in a compromised state.
The draft guide includes factors that organizations should consider to achieve cyber resiliency with their existing and future IT products, systems and services.
The guideline is also designed to inform investment decisions related to cyber resiliency.
NIST will accept feedback on the draft guide until May 18.