extended-abstract

Abstract for NIST PRISMA enhancement

Author:
John M. Abeles

System 1, Inc.

System 1, Inc.
View Profile

CSIIRW '08: Proceedings of the 4th annual workshop on Cyber security and information intelligence research: developing strategies to meet the cyber security and information intelligence challenges aheadMay 2008Article No.: 31Pages 1–3https://doi.org/10.1145/1413140.1413176

Published:12 May 2008Publication History

CSIIRW '08: Proceedings of the 4th annual workshop on Cyber security and information intelligence research: developing strategies to meet the cyber security and information intelligence challenges ahead

Pages 1–3

ABSTRACT

Program Review for Information Security Management Assistance (PRISMA) is a NIST cyber security maturity model that stemmed from the National Institute of Standards and Technology (NIST's) Computer Security Expert Assist Team. Both these concepts were based on a holistic analysis of a cyber security program and portray the results in NIST five-level security maturity model of policy, procedures, implementation, testing, and integration. PRISMA incorporated the 17 management, operational, and technical control families from NIST SP 800-53 as well as FIPS 199 and 200, and other topics such as critical infrastructure protection into 9 topical areas. System 1 was one of the principle authors of the concept, piloted implementation, and was key to the development of NISTIR-7358 and the accompanying PRISMA database. The objectives of PRISMA include:

• Assisting organizations in improving security/protection of federal information and Information Technology (IT) systems

• Helping reduce disruption of critical federal operations and assets;

• Providing supporting information for the FISMA scorecard and report,

• Establishing a security program baseline to measure future improvement following key personnel or organizational changes

Supplemental Material

Available for Download

pdf

a31-abeles-slides.pdf (977.6 KB)

Slide presentation for "NIST program review for information security management assistance (PRISMA) enhancement"

Index Terms

Abstract for NIST PRISMA enhancement

Recommendations

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Published in
CSIIRW '08: Proceedings of the 4th annual workshop on Cyber security and information intelligence research: developing strategies to meet the cyber security and information intelligence challenges ahead
May 2008
470 pages
ISBN:9781605580982
DOI:10.1145/1413140
Editors:
Frederick Sheldon,
Axel Krings,
Robert Abercrombie,
Ali Mili
Copyright © 2008 ACM
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]
Sponsors
In-Cooperation
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
- Published: 12 May 2008
Permissions
Request permissions about this article.
Request Permissions

Check for updates
Qualifiers
- extended-abstract
Conference
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 0
  Total Citations
  View Citations
- 504
  Total Downloads
- Downloads (Last 12 months)5
- Downloads (Last 6 weeks)1
Other Metrics
View Author Metrics
Cited By
This publication has not been cited yet

PDF Format

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Abstract for NIST PRISMA enhancement

CSIIRW '08: Proceedings of the 4th annual workshop on Cyber security and information intelligence research: developing strategies to meet the cyber security and information intelligence challenges ahead

ABSTRACT

Supplemental Material

Available for Download

Cited By

Index Terms

Recommendations

The NIST Definition of Fog Computing NIST SP 800-191: Includes NIST SP 500-291

Digital Identity Guidelines NIST SP 63-3: NiST SP 63-3

NIST SP 1800-3A Attribute Based Access Control: 2nd Draft NIST SP 1800-3A