The National Institute of Standards and Technology (NIST) has updated its cybersecurity guidelines ‒ “Special Publication 800-53, Revision 4: Security and Privacy Controls for Federal Information Systems and Organizations” ‒ the most comprehensive revision since its introduction in 2005. NIST develops the guidelines primarily for federal agencies. Private sector entities, however, should also review them, as cybersecurity in both industry and the public sector has become a main priority of the Administration. Executive Order 13636 calls for the development of a “Cybersecurity Framework” for private industry, and NIST is responsible for drafting it. Companies therefore should pay attention to the guidelines to get a sense of how NIST will approach cybersecurity for private industry.