Why NIST Didn't Adopt ISO 27001

Hey All!

I had a great conversation with NIST's Dr. Ron Ross on my podcast a while ago, and wanted to share another clip from it: [The REAL Reason NIST Didn't Use ISO 27001 (youtube.com)](https://www.youtube.com/watch?v=KK3iiaX27oI)

Dr. Ross is the lead author of Risk Management Framework (RMF) and the NIST 800-53 security controls!

In this clip, Dr. Ross tells us why he created the NIST SP 800-53 security control catalog instead of adopting the ISO 27001 / 27002 security …

author catalog control controls cybersecurity framework hearing hey iso iso 27001 management nist nist 800-53 nothing risk risk management risk management framework rmf security security controls sp 800-53 the source