NIST Introduces New Privacy Framework at the RSA Conference
The National Institute of Standards and Technology (NIST) revealed that it had plans to assist companies in addressing data privacy with the creation and development of a new privacy framework.
The Institute made the announcement at the ongoing RSA Conference 2019, stressing that it was already a work in progress.
NIST’s Senior Privacy Advisor, Naomi Lefkovitz and Chief of Applied Cybersecurity Division, Kevin Stine took to the conference stage to discuss the technical details surrounding the Privacy Framework, noting that data privacy was a vital aspect to a comprehensive enterprise risk management plan.
The Privacy Framework is currently developed to be non-prescriptive, risk-based/outcome-based for it to be easily adopted by all.
Unlike the GDPR that focuses on how data privacy should be achieved, the Privacy Framework will feature desired outcomes and favorable measures to go about getting it achieved.
They noted that privacy was one dimension of risk and should be involved in broader enterprise risk management activity in an organization. ..Read More..