The digital field is growing fast, presenting new dangers and difficulties for enterprises of all kinds. Managing these threats effectively is no longer optional—it’s essential. But what does it take ...

A decade after releasing its landmark national cybersecurity framework, the National Institute of Standards and Technology on Monday released version 2.0, an updated document that emphasizes ...

Cyber risk management is the practice of prioritizing cyber security defensive measures based on the potential adverse impact of the threats they’re designed to address. Establishing a risk management ...

The authors of the new Cyber Risk Management Program framework explain how it can set an organization up to better comply with SEC and other disclosure and reporting regulations. In a landmark ...

Adam Stone writes on technology trends from Annapolis, Md., with a focus on government IT, military and first-responder technologies. The Pentagon plans to change the way it addresses cybersecurity ...

The message is that "risk management needs to be elevated to an enterprise-level, with key leadership involvement," Gartner's Katell Thielemann said. NIST is seeking feedback on this draft and the ...

On December 16, 2025, the National Institute of Standards and Technology (“NIST”), a non-regulatory federal agency within the ...

It’s time the National Institute of Standards and Technology point to how organizations should be assessing the risk they’re associating with systems when deciding what security controls to implement ...

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author. Compliance with the amendments will be required from 31 January 2026. The ...

What is a risk management framework? Implementing the principles and guidelines of a risk management framework (RMF) is not just an effective way to manage current risks, it also provides a structured ...

The Army is launching Project Sentinel to adapt the current Risk Management Framework (RMF) process into a streamlined threat-informed risk decision process. The Army adopted the Risk Management ...

BALTIMORE — Lt. Gen. John B. Morrison, Jr. highlighted Army cybersecurity risk management reforms during the opening day of TechNet Cyber 2022 in Baltimore on April 26. “Earlier this year, we ...