Vulnerability management

NIST Seeks Comments on Draft Incident Response Recommendations for Cybersecurity Risk Management

The National Institute of Standards and Technology is soliciting feedback on an initial public draft publication providing organizations with recommendations to incorporate incident response in their cybersecurity risk management activities in line with the NIST Cybersecurity Framework 2.0.

Comments to the draft publication are due May 20, NIST said.

According to Special Publication 800-61r3, “Incident Response Recommendations and Considerations for Cybersecurity Risk Management: A CSF 2.0 Community Profile,” while organizations have no direct control over the tactics and techniques of malicious cyber actors, they can use a tailored incident response life cycle framework to develop strong cybersecurity risk management practices and mitigate cybersecurity risks.

SP 800-61r3 is the third revision of the publication. The latest version changes the incident response life cycle model in the second revision to adapt to the rising cyber incidents, which cause more damage compared to the cyberthreats at the time when the previous document was released.

The new model integrates all six CSF 2.0 functions, namely govern, identify, protect, detect, respond and recover.

NIST said incorporating the model in cybersecurity risk management activities will enable organizations to prepare for incident responses, reduce the number and impact of incidents that occur, and improve the efficiency and effectiveness of their incident detection, response and recovery activities.”