TMCnet News
SSIC Cyber Risk Model Blazes New Path for Adoption of NIST CSF FrameworkSecure Systems Innovation Corporation (SSIC), a cyber risk advisory firm that empowers informed business decision making, is announcing the expanded application of X-Analytics™, its patented method for measuring and modeling cyber risk, for organizations adopting the National Institutes of Standard and Technology (NIST) Cyber Security Framework (CSF). The May 11, 2017 Presidential Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure mandates federal agencies use the NIST Cyber Security Framework to establish and maintain an ongoing risk management program as a cybersecurity priority. "Effective implementation of the NIST Cyber Security Framework requires an organization to interconnect the various layers and subcategories of the framework with enterprise risk management efforts, resulting in layers of complexity that strain broader adoption of the framework," said Robert Vescio, managing director of risk services at SIC. "X-Analytics offers organizations a seamless way to establish metrics and integrate with the framework, while easing their implementation burden and providing an objective and efficient approach to implementation." SSIC's X-Analytics Cyber Risk Intelligence provides a complete, objective picture of enterprise cyber risk, now incorporating NIST CSF Core, Tier, and Profile elements. The model allows organizations to predict the likelihood and financial damages associated with a cyber attack, communicated in simple economic terms. X-Analytics Simplifies, Prioritizes the NIST Framework X-Analytics enables rapid adoption of the NIST framework in the following ways:
"Both private and public-sector organizations have been searching for metrics related to how the various NIST CSF components align with business objectives," said Larry Clinton, president, Internet Security Alliance. "Any metrics-based approach must also bring forward a cost-effective and objective solution for prioritized NIST CSF implementation." Through SSIC's partnership with TRU8 Solutions, X-Analytics for NIST is also available within the RSA (News - Alert) Archer Platform and can be incorporated into an organization's federal continuous diagnostics and mitigation (CDM) strategy, if applicable. SSIC is holding a NIST CSF implementation workshop on Nov. 30, 2017, from 8:30 AM ET to 11 AM ET, at the National Press Club in Washington, D.C. that will teach participants how to optimize NIST CSF implementation through the adoption of the X-Analytics cyber risk model. Registration for the free event is available here. About SSIC Based in the Washington, D.C. area, Secure Systems Innovation Corporation (SSIC) is a cyber risk advisory firm that empowers informed business decision making. Its innovative, patented method for measuring and modeling cyber risk, X-Analytics™, enables customers to quantify their cyber risk posture in simple economic terms. SSIC is at the forefront of helping customers transform complicated security data into powerful business intelligence. Visit www.securesystemscorp.com for more information.
View source version on businesswire.com: http://www.businesswire.com/news/home/20171106005783/en/ |