The National Institute of Standards and Technology released Special Publication 800-137A, guidance on how to assess Information Security Continuous Monitoring (ISCM) programs for commercial entities as well as Federal, state, and local government organizations. […]