NIST SP 800-53, rev 5 is going to blow your security budget!
What’s new in DRAFT NIST Special Publication 800-53, Revision 5, Security and Privacy Controls for Information Systems and Organizations? Watch on demand and read the slide deckhere.
WHY is NIST mandating IAST SA-11(9) and RASP SI-7(17) technologies? Who lobbied NIST for their inclusion? Something smells. IF passed, these new controls are going to COST organizations MILLIONS OF DOLLARS in licensing fees each year.
Re: NIST SP 800-53, rev 5 is going to blow your security budget!
I see real opportunities to divide privacy and security practitioners against one another trying to get what they want. Really, what a hot, if not expensive, mess in attempt to provide a solution for all organizations under any constraint.