Inside Cybersecurity

July 2, 2022

Daily News

NIST offers ways to use business impact analysis for setting cybersecurity priorities

By Charlie Mitchell / June 13, 2022

A draft report from NIST discusses ways to use impact analyses as business managers attempt to establish priorities in addressing cybersecurity risks.

“Traditional business impact analyses (BIAs) have been successfully used for business continuity and disaster recovery (BC/DR) by triaging damaged infrastructure recovery actions that are primarily based on the duration and cost of system outages (i.e., availability compromise). However, BIA analyses can be easily expanded to consider other cyber-risk compromises and remedies,” according to NIST.

The draft version of...


Log in to access this content.


Not a subscriber? Sign up for 30 days free access to exclusive news and analysis on cybersecurity regulations and more.