Government // Cybersecurity
News
5/14/2014
01:10 PM
Connect Directly
RSS
E-Mail

NIST Proposes Guidelines For More Secure IT Systems

Recommendations infuse security practices into cradle-to-grave IT and software engineering processes for both private and public-sector IT systems.

Summary of technical and nontechnical processes that could incorporate stronger IT security engineering disciplines, from NIST publication 800-160.
Summary of technical and nontechnical processes that could incorporate stronger IT security engineering disciplines, from NIST publication 800-160.

Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
WKash
50%
50%
WKash,
User Rank: Author
5/14/2014 | 11:45:44 PM
Comment period
My initial comment to NIST is  this: Incorporating security disciplines in each of 11 system and software engineering processes sounds like a good move, but what incentives will developers or SysAdmins have in actually using those disciplines, especially when there's so much emphasis on speed to market?

d
Cyber Security Standards for Major Infrastructure
Cyber Security Standards for Major Infrastructure
The Presidential Executive Order from February established a framework and clear set of security standards to be applied across critical infrastructure. Now the real work begins.
Register for InformationWeek Newsletters
White Papers
Current Issue
InformationWeek Tech Digest September 24, 2014
Start improving branch office support by tapping public and private cloud resources to boost performance, increase worker productivity, and cut costs.
Video
Slideshows
Twitter Feed
InformationWeek Radio
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.