Inside Cybersecurity

July 19, 2024

Daily News

NIST releases final publication on enterprise risk management for IT, communications sectors

By Sara Friedman / November 20, 2023

The National Institute of Standards and Technology has finalized guidance on how to govern and manage risk as part of an enterprise-wide plan, with a specific focus on considerations in the information and communications technology sector.

“Information and Communications Technology (ICT) spans all tools, devices, data, infrastructure, and components and it’s a broad concept that continues to evolve. Enterprise Risk Management (ERM) programs should consider ICT risks alongside those in other risk disciplines like financial or legal which consider the...


Log in to access this content.


Not a subscriber? Sign up for 30 days free access to exclusive news and analysis on cybersecurity regulations and more.