“FRAMEWORK FOR IMPROVING CRITICAL INFRASTRUCTURE CYBERSECURITY” – MATTHEW BARRETT
With increasing reliance on technology, businesses are increasingly transitioning from trust to digital trust models. This transition has been hindered by the lack of a common language for understanding, managing, and expressing cybersecurity risk inside and outside of organizations. The Framework for Improving Critical Infrastructure Cybersecurity (“The Framework”) was published in February 2014 to provide a common cybersecurity risk management language, as well as a common approach. The Framework can be used to help identify and prioritize actions for reducing cybersecurity risk, and is a tool for aligning policy, business, and technological approaches to managing that risk.