Newsletter

The Private Sector Should Watch NIST’s Broad Work on Privacy and Cybersecurity Guidance

September 2022

Privacy In Focus®

NIST continues to work on several cybersecurity and privacy workstreams of interest to the private sector. While NIST has traditionally supported federal agencies’ IT security, over the past several years it has taken on (and been delegated) several workstreams under Executive Orders and legislation to address multiple aspects of privacy and security, including key areas of technological innovation. Examples of open workstreams that may impact the private sector include:

Perhaps of more critical and widespread importance, NIST is revising its foundational Framework for Critical Infrastructure Cybersecurity, created in 2014 and revised in 2018 as version 1.1. Public comments on the pending revision suggested a variety of paths, some modest and some transformational. NIST has touted its first workshop on the NIST Cybersecurity Framework update, “Beginning our Journey to the NIST Cybersecurity Framework 2.0”, which was held virtually on August 17, 2022 with almost 4,000 attendees from 100 countries. Given the foundational role of the NIST Framework to many private organizations’ cyber strategies, major changes should be watched carefully for potential need for compliance program adjustments.

There are myriad other projects underway at NIST and at the National Cybersecurity Center of Excellence (NCCoE) that examine practical applications in privacy, network security, digital identity, and other important parts of organizations’ risk management strategies. The staff at NIST and NCCoE are accessible and interested in meaningful private input to inform their workstreams.

© 2022 Wiley Rein LLP

Read Time: 3 min
Jump to top of page

Wiley Rein LLP Cookie Preference Center

Your Privacy

When you visit our website, we use cookies on your browser to collect information. The information collected might relate to you, your preferences, or your device, and is mostly used to make the site work as you expect it to and to provide a more personalized web experience. For more information about how we use Cookies, please see our Privacy Policy.

Strictly Necessary Cookies

Always Active

Necessary cookies enable core functionality such as security, network management, and accessibility. These cookies may only be disabled by changing your browser settings, but this may affect how the website functions.

Functional Cookies

Always Active

Some functions of the site require remembering user choices, for example your cookie preference, or keyword search highlighting. These do not store any personal information.

Form Submissions

Always Active

When submitting your data, for example on a contact form or event registration, a cookie might be used to monitor the state of your submission across pages.

Performance Cookies

Performance cookies help us improve our website by collecting and reporting information on its usage. We access and process information from these cookies at an aggregate level.

Powered by Firmseek