The National Institute of Science and Technology (NIST) has long been a leading authority in Cybersecurity—even before Cybersecurity became a household name.
It originally published its Cybersecurity Framework-intended not to be a standard, but to offer guidance—to all industries on how to begin to tackle data security.
As cyber threats expand and become more sophisticated, NIST continues to provide guidance which is helpful to the public and private sectors.
NIST recently published its most recent draft Cybersecurity guidance, which provides important information for companies to consider. NIST is seeking comments to the draft guidance until September 12.
Separately, NIST issued guidance that supports the change from complex passwords to using long, easy to remember passwords. That guidance can be accessed here and see Privacy Tip #102 that discusses how you can educate your employees on using long passwords they can remember.