A House panel approved and sent to the entire House of Representatives to reform the, the 11-year-old law that governs IT security in the federal government.See Also:The bipartisan unanimously passed the House Oversight and Government Reform Committee by a voice vote on March 20. The measure would require federal agencies to continuously monitor their IT systems for cyberthreats and implement regular threat assessments. The legislation, if enacted, would usurp the current FISMA law that heavily relies on a check-list approach to IT security that many people in government contend doesn't truly show how secure agencies' IT systems are see.Each agency would be required to designate an official to be under provisions of the bill.
An agency's chief information officer could serve simultaneously as CISO; however, the bill would require that information security be the CISO's main focus. From heightened risks to increased regulations, senior leaders at all levels are pressured toimprove their organizations' risk management capabilities. But no one is showing them how -until now.Learn the fundamentals of developing a risk management program from the man who wrote the bookon the topic: Ron Ross, computer scientist for the National Institute of Standards andTechnology. In an exclusive presentation, Ross, lead author of NIST Special Publication 800-37- the bible of risk assessment and management - will share his unique insights on how to:. Understand the current cyber threats to all public and private sector organizations;. Develop a multi-tiered risk management approach built upon governance, processes andinformation systems;. Implement NIST's risk management framework, from defining risks to selecting, implementingand monitoring information security controls.
![Security Security](/uploads/1/2/5/3/125383264/353492183.jpg)
Jan 14, 2019 - The chief information security officer (CISO) is the executive responsible for. Responsibilities and requirements for this vital leadership role. Know about PCI, HIPAA, NIST, GLBA and SOX compliance assessments as well.