Hi All,
Draft (2nd) NISTIR 8278, National Cybersecurity Online Informative References (OLIR) Program: Program Overview and OLIR Uses. This report describes the OLIR Program: what OLIRs are, what benefits they provide, how anyone can search and access OLIRs, and how subject matter experts can contribute OLIRs. Based on feedback received from early adopters as well as discussions at the December 2019 OLIR workshop, this second draft includes:
- The introduction of two new Focal Document Templates:
- Privacy Framework: A Tool for Improving Privacy through Enterprise Risk Management v1.0, and
- Special Publication 800-53 Revision 4, Security and Privacy Controls for Federal Information Systems and Organizations
- New functional enhancements to the OLIR Catalog and Derived Relationships Mapping (DRM) display tool
NIST is seeking public comments on the National Cybersecurity Online Informative References (OLIR) Program. This Program is a NIST effort to facilitate subject matter experts in defining standardized Online Informative References (OLIRs), which are relationships between elements of their documents and elements of other documents like the NIST Cybersecurity Framework. The draft reports focus on 1) OLIR program overview and uses (NISTIR 8278)
The public comment period is open through September 4th, 2020. See the
publication details for a copy of the documents and instructions on submitting comments
------------------------------
Michael Roza CPA, CISA, CIA
------------------------------