Per last post, I’ll be at the White House today for the rollout of the NIST Voluntary Cybersecurity Framework that many of us worked on last year. You can see it live today at 1pm here:
Also, I’ve been working on my alternate version which will cover the 80% space that the NIST facilitated framework doesn’t. Particularly, I’m focusing on the environment that leads to security. My framework will help minimize the space your security teams have to cover by addressing how and where the business vulnerabilities that lead to technical vulnerabilities are introduced. This approach should both reduce security program costs while at the same time making them more effective. Expect a draft this week.