Classifying Risk and Setting Strategic Priorities Using NIST's Cybersecurity Framework

Wednesday, October 28 | 2:30PM–3:30PM | Poster Sessions, Exhibit Hall H-K
Session Type: Professional Development
This presentation will examine the lessons we have learned from implementing the NIST Cybersecurity Framework at the University of Pittsburgh, including the importance of creating current and target security profiles, and how we have used the NIST framework to more effectively classify risk and set our strategic priorities.

Outcomes: Explore the framework's functions, categories, and subcategories * Understand how to implement the framework and the resources available to assist you * Understand how the framework identifies strategic priorities


  • Sean Sweeney

    Chief Information Security Officer, University of Pittsburgh