{Jan. 18, 2013} – NIST anticipates the release of Special Publication 800-53, Revision 4, Security and Privacy Controls for Federal information Systems and Organizations (Final Public Draft) on Tuesday, February 5th. The final public comment period will run from February 5th through March 1st. Final publication is expected by the end of April.
{Nov. 8, 2012} -- Links to keynote presentations on Emerging Risk Management and Cyber Security Strategies are available at:
Continuous Monitoring – FCW Executive Briefing
Cybersecurity 2013 – Security Management Strategies
Keynote Presentation by Dr. Ron Ross
and
Risk Management – Managing the Problem
ITSAF 2012
Closing Remarks by Dr. Ron Ross
{July 24, 2012} -- Article by Dr. Ron Ross, What Continuous Monitoring Really Means, posted July 24, 2012 in FedTech magazine
{Feb. 28, 2012} -- Security and Privacy Controls for Federal Information Systems and Organizations is now available for public comment. Go to the CSRC Drafts page.
800-53-rev4
{Sept. 30, 2011} -- SP 800-137 Final Publication, Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations
Read More >
{Sept. 19, 2011} -- Initial Public Draft (IPD) of Special Publication 800-30, Revision 1, Guide for Conducting Risk Assessments is available for comment.
Read More >
{Aug. 12, 2011} -- SP 800-128 Final Publication, Guide for Security-Focused Configuration Management of Information Systems
Read More >
To promote the development of key security standards and guidelines to support the implementation of and compliance with the Federal Information Security Management Act including:
The FISMA Implementation Project was established in January 2003 to produce several key security standards and guidelines required by Congressional legislation. These publications include FIPS 199, FIPS 200, and NIST Special Publications 800-53, 800-59, and 800-60. Additional security guidance documents are being developed in support of the project including NIST Special Publications 800-37, 800-39, and 800-53A. It should be noted that the Computer Security Division continues to produce other security standards and guidelines in support of FISMA. These publications can be located by visiting the division's Publications page at: http://csrc.nist.gov/publications/.