Home » Tag Archives: NIST

Tag Archives: NIST

Cyber Security: If You Don’t Know the Mission, You Don’t Know the Risk

cyber security

Like the good cyber security stewards we are, we regularly inventory our assets, assess known vulnerabilities, and stay abreast of the latest threat intelligence. So we know our risk, right? Not necessarily. When assessing risk, many cyber security professionals think of the technological impact, such as webserver downtime or the inability to deliver email. The truth is the impact is ...

Read More »

NIST Releases Second Draft of Agency Cyber Security Guide

Another gripping Lunarline cyber security press release

The data breach of 22.1 million records at the Office of Personnel Management (OPM) stands out among 2015’s disastrous security incidents as one of the most analyzed. Experts claim this catastrophic incident is a symptom of a larger problem in government cyber security, indicating a shortcoming of compliance standards for securing organizations. Now, about a year after the OPM incident, ...

Read More »

FISMA’s Race to the Bottom

FISMA Race to the Bottom

“Security control assessments and privacy control assessments are not about checklists, simple pass-fail results, or generating paperwork to pass inspections or audits—rather, such assessments are the principal vehicle used to verify that implemented security controls and privacy controls are meeting their stated goals and objectives.” This is the first paragraph of the prologue of the National Institute of Standards and ...

Read More »

Lunarline Announces New Training Program to Help DoD Adapt to the new RMF for DoD IT

Another gripping Lunarline cyber security press release

Arlington, VA, April 21 – After many long years and a few false starts, The DoDI 8510.01, Department of Defense Information Assurance Certification and Accreditation Process (DIACAP) has been officially superseded. As of March 12, 2014, DoDI 8510.01 has been re-issued. The process is now referred to as the Risk Management Framework (RMF) for DoD Information Technology (IT), or simply the ...

Read More »