Ron Ross, Fellow, National Institute of Standards and Technology
Eric Chabrow, Executive Editor, GovInfoSecurity & InfoRisk Today
NIST information risk guru Ron Ross previews forthcoming guidance from the National Institute of Standards and Technology aimed at helping organizations architect their IT infrastructures to be secure from the get-go.
In a video interview from RSA Conference 2014 with Information Security Media Group, Ross also discusses:
How forthcoming engineering guidance from NIST will help build IT systems' trustworthiness, and;
Beta testing new controls online so stakeholders don't have to wait two years between revisions of Special Publication 800-53, NIST's controls guidance.
A NIST fellow, Ross leads the institute's FISMA Implementation Project, which includes the development of key security standards and guidelines for the federal government and critical information infrastructure, Ross also heads the Joint Task Force Transformation Initiative Interagency Working Group with representatives from NIST, the federal intelligence community, departments of Defense and Commerce, the Office of the Director of National Intelligence and the Committee on National Security Systems. He serves as the architect of the risk-management framework that integrates the suite of NIST security standards and guidelines into a comprehensive enterprise security program.