Posts Under: Risk Management

SIIA, Industry Express Strong Concerns with NIST Draft Privacy Framework

SIIA joined with 11 other industry organizations today to express strong concerns with the direction and potential impact of the National Institute of Standards and Technology’s (NIST) recently proposed privacy risk management framework.  Specifically, in their draft Internal Report, “Privacy Risk Management for Federal Information Systems”, NIST puts forward a privacy risk management framework with privacy engineering objectives and a privacy risk model.  The draft report is intended to offer a methodology to federal agencies to enable them to identify, calculate and account for privacy risks in their systems.