search

What does the national institute of standards and technology do

1 years ago
Comments: 0
Views: 12

The NIST is a key resource for technological advancement and security at many of the country’s most innovative organizations. As such, compliance with NIST standards and guidelines has become a top priority in many high tech industries today.

Show

A Definition of NIST Compliance

The National Institute of Standards and Technology is a non-regulatory government agency that develops technology, metrics, and standards to drive innovation and economic competitiveness at U.S.-based organizations in the science and technology industry. As part of this effort, NIST produces standards and guidelines to help federal agencies meet the requirements of the Federal Information Security Management Act (FISMA). NIST also assists those agencies in protecting their information and information systems through cost-effective programs.

Specifically, NIST develops Federal Information Processing Standards (FIPS) in congruence with FISMA. The Secretary of Commerce approves FIPS, with which federal agencies must comply – federal agencies may not waive the use of the standards. NIST also provides guidance documents and recommendations through its Special Publications (SP) 800-series. The Office of Management and Budget (OMB) policies require that agencies must comply with NIST guidance, unless they are national security programs and systems.

NIST Compliance at a Glance

Generally speaking, NIST guidance provides the set of standards for recommended security controls for information systems at federal agencies. These standards are endorsed by the government, and companies comply with NIST standards because they encompass security best practices controls across a range of industries – an example of a widely adopted NIST standard is the NIST Cybersecurity Framework. NIST standards are based on best practices from several security documents, organizations, and publications, and are designed as a framework for federal agencies and programs requiring stringent security measures.

In many cases, complying with NIST guidelines and recommendations will help federal agencies ensure compliance with other regulations, such as HIPAA, FISMA, or SOX. NIST guidelines are often developed to help agencies meet specific regulatory compliance requirements. For example, NIST has outlined nine steps toward FISMA compliance:

  • Categorize the data and information you need to protect
  • Develop a baseline for the minimum controls required to protect that information
  • Conduct risk assessments to refine your baseline controls>
  • Document your baseline controls in a written security plan
  • >Roll out security controls to your information systems
  • Once implemented, monitor performance to measure the efficacy of security controls
  • Determine agency-level risk based on your assessment of security controls
  • Authorize the information system for processing
  • Continuously monitor your security controls

NIST Compliance Benefits

The initial benefit of NIST compliance is that it helps to ensure an organization’s infrastructure is secure. NIST also lays the foundational protocol for companies to follow when achieving compliance with specific regulations such as HIPAA or FISMA. It’s important to keep in mind, however, that complying with NIST is not a complete assurance that your data is secure. That’s why NIST guidelines begin by telling companies to inventory their cyber assets using a value-based approach, in order to find their most sensitive data and prioritize protection efforts around it.

NIST SP 800-Series Compliance

Many security solutions and services offer continuous, automated monitoring of the NIST 800-seies to help government agencies through the process of identifying and prioritizing their cyber assets, identifying risk thresholds, determining optimal monitoring frequency, and reporting to authorized officials. Some of the most common NIST SP 800-series guidelines that agencies seek help in complying with include NIST SP 800-53, which provides guidelines on security controls that are required for federal information systems, NIST SP 800-37, which helps promote nearly real-time risk management through continuous monitoring of the controls defined in NIST 8000-53, and NIST 800-137, which provides additional guidance relating to enterprise-wide reporting and monitoring using automation.

The Latest from NIST

In May 2015, NIST released a draft document, “Protecting Controlled Unclassified Information in Nonfederal Information Systems and Organizations,” Draft Special Publication 800-171. The new document provides guidance for organizations looking to protect sensitive unclassified federal information that is housed in nonfederal information systems and environments, including non-federal information systems that lie outside existing laws such as FISMA and any components of non-federal systems that process, store, or transmit controlled unclassified information (CUI). The document helps to clarify the role of third parties in data breach incidents and provides guidance on the types of data to protect and the kinds of protections to apply. This document especially is helpful for private sector firms.

Tags:  Data Protection 101

What is NIST famous for?

NIST is one of the nation's oldest physical science laboratories. Congress established the agency to remove a major challenge to U.S. industrial competitiveness at the time — a second-rate measurement infrastructure that lagged behind the capabilities of the United Kingdom, Germany and other economic rivals.

What is one of the core competencies of NIST?

The core competencies of NIST are measurement science, rigorous traceability, and development and use of standards.

Why do I need NIST?

NIST is the body that offers guidelines on technology-related matters, like how to adequately protect data. They offer standards on what security measures should be in place to make sure data is safe. By having NIST-outlined standards, there is a level of uniformity when it comes to cybersecurity.

What is NIST in simple terms?

NIST is the National Institute of Standards and Technology, a unit of the U.S. Commerce Department. Formerly known as the National Bureau of Standards, NIST promotes and maintains measurement standards. It also has active programs for encouraging and assisting industry and science to develop and use these standards.

national institute standards technology NIST standards List nist 800-53 NIST full form

Related Posts

First national bank of texas online banking
First national bank of texas online banking

National financial services llc albuquerque nm phone number
National financial services llc albuquerque nm phone number

Glacier national park reservations going to the sun road
Glacier national park reservations going to the sun road

National registry of unclaimed retirement benefits website
National registry of unclaimed retirement benefits website

Common data set stevens institute of technology
Common data set stevens institute of technology

Where is the original declaration of independence located
Where is the original declaration of independence located

National museum of african american history and culture hours
National museum of african american history and culture hours

National museum of african american history and culture floors
National museum of african american history and culture floors

National liability and fire insurance company customer service
National liability and fire insurance company customer service

The national committee to preserve social security and medicare
The national committee to preserve social security and medicare

Advertising

LATEST NEWS

How do you put music to a picture
1 years ago . by ExtraneousValidity
If wisdom tooth hurts is it infected
1 years ago . by FloweryJoseph
How to pack gauze for wisdom teeth
1 years ago . by GallantAllegation
How does amazon 6 month financing work
1 years ago . by OverworkedOutset
Does iphone 11 pro have sim card
1 years ago . by LongtimeKangaroo
Lilo and stitch the series disney plus
1 years ago . by StridentSquid
Entering the us from canada by air
1 years ago . by GlamorousApartheid
How can i replace my social security card
1 years ago . by FealStandstill
How to delete your account on nintendo switch
1 years ago . by TirelessIniquity
Blue bell dutch chocolate ice cream ingredients
1 years ago . by InstinctiveFriendliness

Advertising

Populer

Advertising

About

Legal

Help

Social

homeendefrjpkoptzhhiitth
Copyright © 2024 en.frojeostern Inc.