Statements (58)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:publishing_company
|
| gptkbp:addresses |
Information system categorization
|
| gptkbp:aimsTo |
Improve information security risk management
|
| gptkbp:appliesTo |
Federal_Information_Systems
|
| gptkbp:description |
Risk assessment process
|
| gptkbp:firstPublished |
2010
|
| gptkbp:focusesOn |
Risk Management Framework
|
| https://www.w3.org/2000/01/rdf-schema#label |
NIST SP 800-37
|
| gptkbp:includes |
Assessment procedures
Security controls selection |
| gptkbp:isAttendedBy |
State governments
Private sector organizations |
| gptkbp:isAvailableIn |
NIST website
|
| gptkbp:isCitedBy |
gptkb:NIST_SP_800-53
|
| gptkbp:isCitedIn |
Cybersecurity policies
|
| gptkbp:isInfluencedBy |
gptkb:NIST_SP_800-30
gptkb:NIST_SP_800-53A gptkb:NIST_SP_800-39 |
| gptkbp:isPartOf |
gptkb:Federal_Risk_Management_Framework
NIST Special Publication series Risk Management Framework (RMF) |
| gptkbp:isReferencedBy |
Federal_Information_Security_Modernization_Act_(FISMA)
|
| gptkbp:isRelatedTo |
Data protection
Risk tolerance Vulnerability assessment Configuration management Incident response planning Business continuity planning Threat assessment Risk mitigation Information assurance Compliance assessment Disaster recovery planning Security assessment Risk communication System security plan Information security policies Incident response training Access control management Security governance Security training and awareness FIPS 199 FIPS 200 Privacy risk management Security program management System authorization Continuous_Risk_Management |
| gptkbp:isUpdatedBy |
gptkb:NIST_SP_800-37_Revision_2
|
| gptkbp:isUsedBy |
Federal agencies
|
| gptkbp:isUsedIn |
Risk management processes
|
| gptkbp:provides |
Documentation requirements
Implementation guidance |
| gptkbp:providesGuidanceOn |
Security and Privacy Controls
|
| gptkbp:publishedBy |
gptkb:National_Institute_of_Standards_and_Technology
|
| gptkbp:relatedTo |
NIST Cybersecurity Framework
|
| gptkbp:renovated |
2018
|
| gptkbp:supports |
Continuous monitoring
|
| gptkbp:title |
Guide_for_Applying_the_Risk_Management_Framework_to_Federal_Information_Systems
|