Global VP Cybersecurity Risk Management | European Deputy General Manager | Counsel Appointed Cyber Adviser | U.S DoD CMMC AB Plank Member | Founder and Partner | Chartered Security Professional and Assessor
Over the past 2 months we have seen the DoD move toward the adoption of the Cybersecurity Framework (CSF) for the Defense Industry Base, as part of the DoD DIB cyber strategy, and clearer oversight of their implementation of the Risk Management Framework (RMF), DoDi 8510.01 and DoDi 5000.90. As cyber regulation in the U.S and EU aligns around cybersecurity risk management, the U.S National and international DIB will be affected by both the focus the DoD is placing on the CSF and RMF for the management of cybersecurity based upon risk. Thaddeus Dziekanowski and Brian D. McCarthy the DoD, DIB and the boards of covered entities require a greater understanding of the RMF (NIST SP 800-37), FISMA, the CSF 2.0 and associated DoDIs. The papers we wrote in 2021 are useful reminded of the challenges for the DIB.(https://lnkd.in/dVdM3ZRq) Bob Dix Veritas GRC United States Department of Defense #cybersecurity #cyberriskmanagement
Hon. Sherman, DoD CIO, announced the release of a memo entitled "Resolving Risk Management Framework and Cybersecurity Reciprocity Issues" today at GEOINT. The memo emphasizes the Deputy Secretary's expectation of testing re-use and reciprocity in risk management decisions, and highlights the CIO's role in resolving disagreements. RMF is a critical tool for managing risk, and this memo will streamline the process and deliver capabilities to the warfighter more effectively. Read more at: https://lnkd.in/dZKUDQxm #Cybersecurity #RMF #ATO