Caleb Skeath and Inside Privacy write:
Last week, the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (“CISA”) released a set of cyber readiness recommendations for small businesses. The recommendations, which CISA developed in collaboration with small businesses and state and local governments, are intended to assist smaller organizations in implementing organizational cybersecurity practices. While not binding requirements, the recommendations may inform what CISA and U.S. regulators view as “reasonable” cybersecurity practices.
The guide, which was developed to be consistent with the NIST Cybersecurity Framework and other cybersecurity standards, describes six “essential elements” that organizational leaders can adopt to build a “culture of cyber readiness.” The guide describes the elements as follows:
Read more on InsidePrivacy.