Sep 15, 2016
Whitepaper
DRAFT Baldrige Cybersecurity Excellence Builder: Key questions for improving your organization's cybersecurity performance
The Baldrige Cybersecurity Excellence Builder (BCEB) is a voluntary self-assessment tool that enables organizations to better understand the effectiveness of their cybersecurity risk management efforts. It helps leaders of organizations identify opportunities for improvement based on their cybersecurity needs and objectives, as well as their larger organizational needs, objectives, and outcomes. Using this self-assessment, you can:
Like the Framework for Improving Critical Infrastructure Cybersecurity (Cybersecurity Framework) and the Baldrige Excellence Framework, the BCEB is not a one-size-fits-all approach. It is adaptable and scalable to your organization's needs, goals, capabilities, and environment. It does not prescribe how you should structure your organization's cybersecurity policies and operations. Through interrelated sets of open-ended questions, it encourages you to use the approaches that best fit your organization.
Specifically, feedback is sought on:
Feedback on this draft will be incorporated into the version 1 release, scheduled for early 2017.
Email comments to:
baldrigecybersecurity@nist.gov
Comments due by: December 15, 2016
(Draft) Baldridge Cybersecurity Excellence Builder
Baldrige Cybersecurity Initiative Homepage
Press Release