NIST seeks input on security guide

[InfoSec News <alerts () infosecnews org>]

http://fcw.com/articles/2013/07/05/nist-security-guide.aspx

By Reid Davenport
FCW.com
July 05, 2013

The National Institute of Standards and Technology has issued a request 
for information for a new guide on how to respond more quickly to security 
breaches. The guide, "Computer Security Incident Coordination," is aimed 
at improving communication between response teams.

"Even though government and industry defend their information systems 
against hackers, attacks are sometimes successful," NIST officials said in 
a statement. "When that happens, speed is of the essence."

The new publication "will supply guidance, methodologies, procedures and 
processes to cut response time and limit information loss when multiple 
organizations are involved," they added.

Among other things, the guide seeks to answer the question of when someone 
should share potentially sensitive information in the course of dealing 
with security threats, said Lee Badger, a group manager at NIST. Although 
some highly sensitive information cannot be shared under any 
circumstances, he said officials still need to consider many variables 
before sharing less sensitive information.

[...]



--
Visit the new and improved InfoSec News website
http://www.infosecnews.org/