This is session 1 of 4 in the Fundamentals of Cybersecurity and Regulatory Updates Series.
Cara Wulf and Philip Lee define cybersecurity foundations and explain why cybersecurity matters. They discuss the type of information that must be protected, and the key governing bodies tasked with implementing the patchwork of laws and regulations addressing cybersecurity requirements. They examine the Federal Acquisition Regulation (FAR) and Defense Federal Acquisition Regulation Supplement (DFARS) clauses governing cybersecurity, as well as certain publications of the National Institute of Standards and Technology (NIST), with particular focus on NIST Special Publication (SP) 800-171, Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations.