Private sector organizations should be motivated to implement the NIST Cybersecurity Framework not only to enhance their cybersecurity and to benefit from added incentives to do so, they should also implement the Framework to lower their potential risk of legal liability.
Failure by the U.S. Congress to pass meaningful cybersecurity legislation led the President to act within his power to address the Nation’s cybersecurity vulnerabilities. Last year, he issued Executive Order 13636 – Improving Critical Infrastructure Cybersecurity. Among other initiatives, the Executive Order called on the National Institute of Standards and Technology (NIST) to develop a Cybersecurity . . .