Jim St.Clair
Jim St.Clair
Just a note, "non-PII data" can also be explicit in that it "does not contain PII". Depending on locality/industry, PII may be explicitly defined by a collection of data elements,...
I think Pamod makes an excellent observation. The Linux Foundation has seen various factors that contribute to sustainability to consider, and we typically have an associated Technical Steering Committee for...
I would be very happy to participate, end of July is still open for planning.
I like this - the issue of trusting the verifier has come up in several conversations Best regards, Jim _______________ [Image] Jim St.Clair Chief Trust Officer ***@***.******@***.***> | 228-273-4893 Let’s...
As discussed in the CFI Policy meeting OSCAL would support automation of FFIEC/NIST CSF controls supported by PCI DSS, CIS, and CSA.
Concur, @prajectory excellent summary
Has this expert panel been convened? Happy to add a couple things: 1) We're still working on the Security Architecture guidance for OpenHIE, so there may be parallels 2) Specific...
I think from the software side AI/ML still fits within the DPG Standard. While I agree with @jwflory about the "grey area" I envision a submitter presenting a candidate DPG...
Thanks @ricardomiron I'd like to know if CoP participation is still open. I've been involved in open source efforts for vulnerability management in AI that I think need to be...