Advertisement
Seeking HoNIST Opinions – NIST Invites Comments on Major Revision to Cyber Supply Chain Risk Management Practices for Systems and Organizations (SP 800-161) and Provides Further Software Supply Chain Guidance Wednesday, May 26, 2021
The National Institute of Standards and Technology (“NIST”) is seeking comments on its draft NIST SP 800-161 Rev. 1, “Cyber Supply Chain Risk Management Practices for Systems and Organizations,” published on April 29, 2021. The public comment period currently is open and concludes on June 14, 2021. NIST anticipates releasing a second draft in September 2021, with a final version anticipated to be released by April 2022.
Primarily, the updates to NIST SP 800-161 are focused on helping organizations identify, assess, and respond to cyber supply chain risks while remaining aligned with other fundamental NIST cybersecurity risk management guidance. The revision to NIST SP 800-161 is designed to incorporate next generation
CISA issues guidance on defending against software supply chain attacks csoonline.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from csoonline.com Daily Mail and Mail on Sunday newspapers.
CISA, NIST Release Guidance on Defending Against Supply Chain Attacks
In light of recent supply chain intrusions, the Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Agency (CISA) and National Institute for Standards and Technology (NIST) have released new guidance on defending supply chain software, using the NIST framework to identify and mitigate risks.
In addition to information about supply chain risks and common attack techniques, the resource helps guide users through identifying, assessing, and mitigating supply chain risks using NIST’s Cyber Supply Chain Risk Management (C-SCRM) framework and the Secure Software Development Framework (SSDF).
“Network defenders are limited in their ability to quickly mitigate consequences after a threat actor has compromised a software supply chain. This is because organizations rarely control their entire software supply chain and lack authority to compel every organization in their supply chain to take prom
Mintegral passes user privacy security assessment performed by internationally recognized accounting firm
News provided by
Share this article
Share this article
SAN FRANCISCO, Jan. 7, 2021 /PRNewswire/ Mintegral, a mobile advertising platform, has announced that its SDK products have completed a user privacy security assessment performed by an internationally recognized accounting firm. The audit report showed that Mintegral has established a complete system to maintain the security of users personal information and other sensitive information during the collection and transmission process.
Secure Software Development Framework (SSDF) used by the assessment
The Mintegral user privacy security assessment was carried out by a top 10 international accounting firm with extensive service experience in data privacy and network security to provide customers with comprehensive solutions and strategies to help improve risk management.