They’ve recently published updates in several areas that have been somewhat threadbare in recent years as we’ve seen the threat landscape change drastically. In concert with most amendments in this cyber arena, they are currently accepting and soliciting feedback until May 15th.
After seven years of limited updates to their risk management publications, we are starting to see some key enhancements all organizations should take into consideration. There are three main areas that this amendment covers and I’ve taken a moment to summarize them here:
Key security enhancements to consider:
- Integration of privacy into the controls
- An entirely new section of supply chain considerations
- State of the practice controls (updated to current cyberattack data)
Unlike the UL or ISO frameworks specific to manufacturing, this is exceptionally relevant for any organization trying to level up its security program. You can find the full article here and should have a look to validate your roadmap against these newly harvested standards.
