PRO+ Premium Content/Information Security

Thank you for joining!
Access your Pro+ Content below.
August 2019, Vol. 20, No. 3

Fitting cybersecurity frameworks into your security strategy

The development of new cybersecurity frameworks has increased dramatically over the past few years. It wasn't too long ago that the choice of frameworks was limited to NIST Special Publication (SP) 800-53 or the International Organization for Standardization (ISO) 27000 series. There are now a multitude of potential options that can range from general security requirements to detailed controls for specific industry verticals. Many frameworks are still available for free, while some have moved to subscription fees and expensive certification programs. Frameworks have evolved to fill the niche requirements of any organizational security program. The wide range of available options could make it difficult for any CISO to select a framework for their security organization. However, the deciding factors are not usually technical in nature. Most of these new cybersecurity frameworks have common controls and technical requirements. The biggest differences involve how the frameworks can be integrated into overall business goals and ...

Access this PRO+ Content for Free!

Features in this issue

News in this issue

Columns in this issue

Enterprise Desktop
Cloud Computing