The National Institute of Standards and Technology issued a request for information in the Federal Register as the first step in developing a cybersecurity framework as laid out in President Obama’s cybersecurity executive order.
The framework will create a set of voluntary standards and best practices to guide industry in reducing cyber risks to the networks and computers that support critical infrastructure vital to the nation’s economy, security and daily life.
NIST seeks ideas, recommendations and other input from critical infrastructure owners and operators, federal agencies, state and local governments, standards-setting organizations and other interested parties about current risk management practices, use of frameworks, standards, guidelines and best practices, specific industry practices and more.
Comments are due by Monday, April 8, 2013 at 5 p.m. ET and should be sent to cyberframework@nist.gov with the subject line “Developing a Framework to Improve Critical Infrastructure Cybersecurity.”