NIST EO Cyber Security Framework Initiative

Abstract:

Recognizing that the national and economic security of the United States depends on the reliable functioning of critical infrastructure, the President under the Executive Order "Improving Critical Infrastructure Cybersecurity" has directed NIST to work with stakeholders to develop a voluntary framework for reducing cyber risks to critical infrastructure. The Framework will consist of standards, guidelines, and best practices to promote the protection of critical infrastructure. The prioritized, flexible, repeatable, and cost-effective approach of the framework will help owners and operators of critical infrastructure to manage cybersecurity-related risk while protecting business confidentiality and individual privacy and civil liberties. This session will provide an overview of the Executive Order and the Preliminary Cybersecurity Framework.

About the Speaker:

Kevin Stine is the manager of the Security Outreach and Integration group within the National Institute of Standards and Technology¹s (NIST) Computer Security Division. The Security Outreach and Integration group develops, integrates, and promotes the mission-specific application of information security standards, guidelines, best practices, and technologies. His work at NIST focuses on applying information security standards, practices, and technologies; conducting outreach and awareness; and advancing security performance measurement. Kevin also serves as the chairperson of the Federal Computer Security Program Managers¹ Forum, an informal group sponsored by NIST to promote the sharing of information security practices among federal agencies.