NTCA submitted comments in response to the National Institute of Standards and Technology’s (NIST’s) request for feedback on the draft Measurement Guide for Information Security. In its response, NTCA noted that while it supports NIST’s intention of providing “a flexible guide to the development and selection of information security measures at the organization, mission/business and system levels to identify the success of in-place policies, procedures and controls,” the Measurement Guide should make clear that the measures described are not to be interpreted as one size fits all, or to be taken on separate from or in addition to the NIST Cybersecurity Framework. Without this affirmation, NTCA expressed concern that small telecommunications providers could face the risk of being found lacking in their cybersecurity efforts simply by virtue of comparison to some of the largest operators globally.
Federal Filing