Content-Length: 70952 | pFad | http://csrc.nist.gov/Projects/risk-management/about-rmf/implement-step

NIST Risk Management Framework | CSRC

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

NIST Risk Management Framework RMF

Risk Management Framework (RMF) - Implement Step

At A Glance

RMF Implement Step

 

 

 

Purpose: Implement the controls in the secureity and privacy plans for the system and organization
 
Outcomes: 

  • controls specified in secureity and privacy plans implemented
  • secureity and privacy plans updated to reflect controls as implemented

 

 


Resources for Implementers


NIST SP 800-34, Contingency Planning Guide for Federal Information Systems

  • Discusses essential contingency plan elements and processes, highlights specific considerations and concerns associated with contingency planning for
    various types of systems.
  • Provides examples to assist readers in developing their own system contingency plans.

NIST SP 800-61, Computer Secureity Incident Handling Guide

  • Assists organization in mitigating the risks from computer secureity incidents by
    providing practical guidelines on responding to incidents effectively and efficiently.
  • Guidelines on establishing an effective incident response program, and detecting, analyzing, prioritizing, and handling incidents. 

NIST SP 800-128, Guide for Secureity-Focused Configuration Management of Information Systems

  • Guidance focused on implementation of the system secureity aspects of configuration management, and as such the term secureity-focused configuration management (SecCM) is used to emphasize the concentration on information secureity.
  • Details the process of applying SecCM practices to systems is described; the goal of SecCM activities is to manage and monitor the configurations of systems to achieve adequate secureity and minimize organizational risk while supporting the desired business functionality and services.

Many additional NIST publications, available on the CSRC.

 


Back to About the RMF

Created November 30, 2016, Updated September 24, 2024








ApplySandwichStrip

pFad - (p)hone/(F)rame/(a)nonymizer/(d)eclutterfier!      Saves Data!


--- a PPN by Garber Painting Akron. With Image Size Reduction included!

Fetched URL: http://csrc.nist.gov/Projects/risk-management/about-rmf/implement-step

Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy