NIST guidance tackles how to integrate cyber-security with ERM – Compliance Week

CERT-LatestNews ThreatsCybercrime ThreatsEconomic

The intent of the guidance—formally called NISTIR 8286 , “Integrating Cybersecurity and Enterprise Risk Management (ERM)—is “to help improve communications (including risk-information sharing) between and among cyber-security professionals, high-level executives, and corporate officers at multiple levels,” NIST said.