President Trump signed the NIST Small Business Cybersecurity Act into law this week.
The push behind the bill is that smaller organizations—which often don't know where to start or don't have major funds for cybersecurity—will finally get the proven help they can use.
The act requires NIST to "disseminate clear and concise resources to help small business concerns identify, assess, manage, and reduce their cybersecurity risks," within a year of the act becoming law.
Dr. Bret Fund says this is an important move toward a more secure future. He is Founder and CEO at SecureSet, a Denver-based immersive, accelerated cybersecurity academy.
“The NIST Small Business Cybersecurity Act is a significant win for the cybersecurity industry and for small to medium size business who struggle to operate consistent with the NIST standards. This change sets the stage for greater compliance and readiness from smaller organizations who previously thought that NIST compliance was too costly or complex to obtain."
The current NIST Cybersecurity Framework has been proven as an incredible IT security tool. See the ways that NIST maps to a cyber attack.
And if you're looking for NIST training, check out the SecureWorld PLUS course, "Designing and Building a Cybersecurity Program Based on the NIST Cybersecurity Framework," taught by UMass CISO Larry Wilson.