Home » Tag Archives: NIST

Tag Archives: NIST

Get Ready for Updated NIST Compliance Requirements


Like so many areas of the American political system, federal cyber security regulation is in a period of transition. Some of the change is an effect of the presidential handoff to an administration with a markedly different agenda from the previous one. But an even greater driver has been the failure of some government agencies to protect highly sensitive data. ...

Read More »

Resistance is Futile; You Must Comply

personally identifiable information

No threat actor ever avoided attacking your system because you marked a control as compliant. Yet organizations today are spending ever increasing resources to remain compliant with a myriad of frameworks, including the National Institute of Standards and Technology’s (NIST) Risk Management Framework (RMF), International Standards Organization (ISO) frameworks, such as ISO 27001, and ISACA’s Control Objectives for Information and ...

Read More »

Cyber Security: If You Don’t Know the Mission, You Don’t Know the Risk

cyber security

Like the good cyber security stewards we are, we regularly inventory our assets, assess known vulnerabilities, and stay abreast of the latest threat intelligence. So we know our risk, right? Not necessarily. When assessing risk, many cyber security professionals think of the technological impact, such as webserver downtime or the inability to deliver email. The truth is the impact is ...

Read More »

NIST Releases Second Draft of Agency Cyber Security Guide

Another gripping Lunarline cyber security press release

The data breach of 22.1 million records at the Office of Personnel Management (OPM) stands out among 2015’s disastrous security incidents as one of the most analyzed. Experts claim this catastrophic incident is a symptom of a larger problem in government cyber security, indicating a shortcoming of compliance standards for securing organizations. Now, about a year after the OPM incident, ...

Read More »