Continuing to address national concerns about privacy protection, the newest NIST Privacy Framework has been released with requests for comments until Oct. 24. NIST is asking for input on a range of aspects, such as whether it adequately defines the relationship between privacy and security, enables cost effective implementation and whether it will be relevant to the glut of IoT devices and artificial intelligence products likely to hit the market over the next few decades.
According to George Wrenn, Founder and CEO of CyberSaint Security:
“In years past, privacy and security were seen as two distinct functions within an organization. However, while security can exist without privacy, privacy cannot exist without security. At the highest level, aligning the new Privacy Framework draft core with the CSF core indicates that NIST recognizes that these two functions are serving the same goal of protecting the consumer. By integrating privacy and security together, organizations can take a more holistic view of their integrated risk management program.”