share

New Federal Proposal Outlines Reasonable Approach for Managing Cybersecurity Risks


Contact: Scott Jensen (202) 249-6511  
Email: scott_jensen@americanchemistry.com

WASHINGTON (Sept. 19, 2013)In response to a White House executive order, the National Institute of Standards and Technology (NIST) has released a preliminary cybersecurity framework that provides a reasonable approach for members of the chemical sector and other critical infrastructure sectors to better understand and address cybersecurity risks. The best practices and guidance outlined in the framework are slated to be released for comment in October.

The following statement can be attributed to American Chemistry Council (ACC) Senior Director of Security, Bill Erny:

“We commend NIST for working diligently with stakeholders to develop a framework that will help enhance cybersecurity across our nation’s critical infrastructure. 

“Through Responsible Care®, the chemical industry’s world-class environmental, health, safety and security performance initiative, ACC members are already required to have robust security programs in place. We believe this existing commitment to cybersecurity makes ACC and its members especially well positioned to collaborate with NIST and the regulated community. We are confident that our member’s accomplishments under Responsible Care can easily be adapted to meet the framework model. 

“We believe there are several key strengths with the approach proposed by NIST for bolstering cybersecurity. The framework will enable companies to assess whether their current cybersecurity programs are sufficient. And, without being overly prescriptive, it provides guidance on how companies can improve upon current programs or, if necessary, build a new one from scratch. It also seeks to fully utilize existing resources by taking advantage of proven cybersecurity best practices currently available in the public domain.

“ACC and our members look forward to leveraging the success of our Responsible Care program to assist NIST in identifying ways to track progress and ensure the proposed framework can be adopted broadly and successfully.”

» Learn more about cybersecurity

From: 
Email:  
To: 
Email:  
Subject: 
Message: