Boise State University is adopting the National Institute of Standards and Technology (NIST) cybersecurity framework, a significant step that enhances the university’s ability to compete for sponsored projects requiring controlled data management (e.g., covered defense information, protected health information) and reinforces its commitment to cybersecurity excellence.
The NIST cybersecurity framework is a set of best practices and guidelines used across government and industry to manage cybersecurity risks.
Widely recognized for its rigor and reliability, the framework provides a structured, scalable approach to safeguarding sensitive data and protecting digital infrastructure.
As part of its efforts to improve support for research that deals with sensitive information and must meet strict security and privacy compliance requirements, the university’s Office of Information Technology is leveraging Amazon Web Services (AWS) as a pathway to achieving NIST compliance.
AWS provides a safe, robust cloud environment that uses built-in guardrails that follow trusted security standards. These rules help to ensure that data is protected, access is securely managed, and system activity is monitored.
“Using Amazon Web Services helps position Boise State to pursue more competitive research opportunities, particularly in fields that involve sensitive or federally regulated data,” said Max Davis-Johnson, associate vice president and chief information officer. “This includes grants from agencies like the U.S. Department of Defense, Department of Energy, and NASA, all of which often require NIST-aligned security protocols.”
The final step to achieve certification for the AWS secure enclave involves documenting all of the security controls, expected to complete later this year.
According to Davis-Johnson, “This initiative is part of a broader mission to ensure that our digital infrastructure is resilient and research-ready. It will open the door to new partnerships and funding streams that advance innovation.”
As Boise State continues to build capacity in research and innovation, the NIST cybersecurity framework provides a critical foundation for the university’s readiness to meet the security standards of the nation’s top research institutions and funding bodies.