The National Institute of Standards and Technology released the first in a planned series of reports targeted at assisting IoT users — specifically federal agencies and other large entities — identify and mitigate security and privacy risks. NIST implements practical cybersecurity and privacy through outreach and effective application of standards and best practices necessary for the U.S. to adopt cybersecurity capabilities.
of organizations have been infected with ransomware, or other malware, as a result of employees web browsing.
While the purpose of the publication is to help federal agencies, other enterprises can benefit from the report to better understand and manage the cyber security and privacy risks associated with their IoT devices. NIST lays out three high-level risk mitigation goals:
- Protect device security
- Protect data security
- Protecting individuals’ privacy throughout the device lifecycle
You can search online for the report, NISTIR 8228: Considerations for Managing IoT Cybersecurity & Privacy Risks, or contact one of our experts today.