Cert2Connect

  • FIND ALL YOUR CYBER SECURITY ANSWERS ON OUR WIKI PAGE

    The Cert2Connect wiki for a clear overview of terminology and the many abbreviations in the cyber, cloud and software security landscape.
    Cert2Connect

NIST Risk Management Framework

Articles count

NIST Risk Management Framework

The NIST Risk Management Framework (RMF) is a structured approach to identifying, assessing, controlling and monitoring information security risks within an organization.

The framework consists of six phases:

  1. Categorize: identify systems and assets and determine the level of protection required.
  2. Select: Select appropriate security controls used to mitigate risk.
  3. Implement: Implement the security controls in the systems and assets.
  4. Assess: Evaluate the effectiveness of the security controls to determine whether the security measures are adequate.
  5. Authorize: decide whether the systems and assets are safe enough to put into production.
  6. Monitor: Continuously monitor and review security controls to ensure security continues to meet requirements.

The NIST RMF is a flexible framework and can be adapted to the specific needs of an organization. It is used by government agencies and businesses around the world.

Updated on 07 Aug, 2023
Tagged Cymulate
Overview

View related articles

Cert2Connect

Contact one of our specialists

We would like to assist you. If needed, we are ready to organize a presentation or demo of our solution approach. You can also regularly find us at trade fairs and events. Follow the events page on this site or sign up via the contact page for our newsletter.

Make an appointment