DISA News

• DISA appoints new Operations and Infrastructure Center Director – Don Means Jr
• DISA appoints 1st Diversity Chief – Damien Terry

STIG Updates

• SLES 15 Security Technical Implementation Guide (STIG) benchmark
• DISA released Unclassified Application STIGs and SRGs, Unclassified Mobility STIGs and SRGs, Unclassified Network STIGs and SRGs, Unclassified Operating System STIGs and SRGs, Supplemental Automation Content, Sunsets, and Benchmarks.
• Microsoft Exchange 2013, Microsoft Exchange 2016, and Microsoft Outlook 2016 V2R2 Security Technical Implementation Guides (STIGs)
• Splunk Enterprise 8.x for Linux Security Technical Implementation Guide (STIG)
• Palo Alto Networks Security Technical Implementation Guide (STIG) with Ansible

NIST News

Announcements:

• None

Special Publications & Updates:

• Draft NISTIR 8286C, “Staging Cybersecurity Risks for Enterprise Risk Management and Governance Oversight”
• SP 800-53A Revision 5, “Assessing Security and Privacy Controls in Information Systems and Organizations”
• FIPS 201-3, “Personal Identity Verification (PIV) of Federal Employees and Contractors”
• SP 800-106, “Randomized Hashing for Digitial Signatures”
• Seeking Comments on a proposed change to SP 800-22 “Revision 1a”
• Draft SP 800-160 Volume 1, “Engineering Trustworthy Secure Systems”
• Draft NISTIR 8389, “Cybersecurity Considerations for Open Banking Technology and Emerging Standards”

NIAP News

Updates & Announcements:

• None

Protection Profile Posting:

• None