A profile implements the NIST Cybersecurity Framework, which was developed in 2014 to address and manage cybersecurity risk in a cost-effective way based on business needs and without placing additional regulatory requirements on businesses. The profile is how organizations align the Framework’s cybersecurity activities, outcomes, and informative references to organizational business requirements, risk tolerances, and resource allocations. Comments are requested by Sept. 7, 2017.
6/1/2017: The Evolution of Sector Profiles – Recap of recent NIST Cybersecurity Framework Workshop
In this post, Capt. Ryan Manning, chief of the Office of Port and Facility Compliance, talks about the progress made between the Coast Guard and partner organizations to continue building cybersecurity profiles and the importance of constant stakeholder engagement.
11/10/2016: Release of Maritime Bulk Liquids Transfer Cybersecurity Framework Profile
The U.S. Coast Guard, the National Institute of Standards and Technology (NIST), and maritime industry stakeholders have developed a voluntary cybersecurity “Profile” for Maritime Bulk Liquid Transfer (MBLT) facilities. This Profile will be released Thursday at the American Petroleum Institute’s 11th Annual Cybersecurity Conference in Houston.
10/3/2016: Cyber risk management in the marine transportation system
October is nationally recognized as Cyber Security Awareness Month, and there is no better time to discuss the importance of cybersecurity and the Coast Guard’s role in cyber risk management.
4/15/2014: NIST Cybersecurity Framework Shop
The director of Coast Guard inspections and compliance provides a summary of remarks made, and questions asked, at the recent cybersecurity workshop, hosted by the National Institute for Standards and Technology. His remarks focused on work done by the Coast Guard and partner organizations to building security profiles, using the NIST Framework, to secure the bulk liquid transport sector.