New Cybersecurity Guidelines Released by White House, Part 1

New Cybersecurity Guidelines Released by White House, Part 1

  • By Ginger Hill
  • Feb 12, 2014

To assist businesses in managing the growing risk of web-based attacks, the National Institute for Standards and Technology has assembled a 41-page cybersecurity framework as a guide for cybersecurity. Broken into 4 different tiers of protection according to varying risks and resources and introduced by the White House earlier today, President Obama signed the official order for this framework earlier this month.

“We cannot look back years from now and wonder why we did nothing in the fact of real threats to our security and our economy,” said Obama.

Below is the Framework Core, comprised of 4 elements that present key cybersecurity outcomes identified by specific industries. For the security industry, I think it would be beneficial to complete this core for as many verticals as possible, from education to oil and gas to fire and life safety to access control and beyond.

New Cybersecurity Guidelines Released by White House, Part 1

Functions Column – organizes basic cyber security activities; aids organizations in managing risk; addresses threats; and improves learning from previous activities.

Identify: manage cybersecurity risks by understanding business context, identifying resources used to support the business; creating risk management strategy.

Protect: implement safeguards to limit and/or contain the impact of unwanted cyber events.

Detect: implement activities to ensure a timely discover of unwanted cyber events.

Respond: take action quickly and effectively.

Recover: develop and implement a plan for resiliency and to restore business functions quickly.

Categories Column – groups of cybersecurity outcomes closely tied to particular activities.

Subcategories Column – specific outcomes of management activities.

Informative References Column – standards, guidelines and practices.

Once you have identified your company’s framework, it’s time to discover how your organization views cybersecurity risks and identify the processes in place to manage these risks by choosing the tier in which your business currently identifies with most.

Click here for Part 2 of this article where I introduce the tiers and give tips on how to select the correct tier for your company!

(Image from the official framework's PDF.)

About the Author

Ginger Hill is Group Social Media Manager.

Featured

  • AI-Generated Code Poses Major Security Risks in Nearly Half of All Development Tasks

    Veracode, a provider of application risk management, recently unveiled its 2025 GenAI Code Security Report, revealing critical security flaws in AI-generated code. The study analyzed 80 curated coding tasks across more than 100 large language models (LLMs), revealing that while AI produces functional code, it introduces security vulnerabilities in 45 percent of cases. Read Now

  • Unlocking the Possibilities

    Security needs continue to evolve and end users are under pressure to address emerging risks and safety concerns. For many, that focus starts with upgrading perimeter openings and layering technologies—beginning at the door. Read Now

  • Freedom of Choice

    In today's security landscape, we are witnessing a fundamental transformation in how organizations manage digital evidence. Law enforcement agencies, campus security teams, and large facility operators face increasingly complex challenges with expanding video data, tightening budget constraints and inflexible systems that limit innovation. Read Now

  • Accelerating a Pathway

    There is a new trend touting the transformational qualities of AI’s ability to deliver actionable data and predictive analysis that in many instances, seems to be a bit of an overpromise. The reality is that very few solutions in the cyber-physical security (CPS) space live up to this high expectation with the one exception being the new generation of Physical Identity and Access Management (PIAM) software – herein recategorized as PIAM+. Read Now

  • Protecting Your Zones

    It is game day. You can feel the crowd’s energy. In the parking lot. At the gate. In the stadium. On the concourse. Fans are eager to party. Food and merchandise vendors ready themselves for the rush. Read Now

Most   Popular

New Products

  • FEP GameChanger

    FEP GameChanger

    Paige Datacom Solutions Introduces Important and Innovative Cabling Products GameChanger Cable, a proven and patented solution that significantly exceeds the reach of traditional category cable will now have a FEP/FEP construction.

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities

  • Camden CM-221 Series Switches

    Camden CM-221 Series Switches

    Camden Door Controls is pleased to announce that, in response to soaring customer demand, it has expanded its range of ValueWave™ no-touch switches to include a narrow (slimline) version with manual override. This override button is designed to provide additional assurance that the request to exit switch will open a door, even if the no-touch sensor fails to operate. This new slimline switch also features a heavy gauge stainless steel faceplate, a red/green illuminated light ring, and is IP65 rated, making it ideal for indoor or outdoor use as part of an automatic door or access control system. ValueWave™ no-touch switches are designed for easy installation and trouble-free service in high traffic applications. In addition to this narrow version, the CM-221 & CM-222 Series switches are available in a range of other models with single and double gang heavy-gauge stainless steel faceplates and include illuminated light rings.