risk management framework (RMF)

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

Abbreviation(s) and Synonym(s):

Definition(s):

A structured approach used to oversee and manage risk for an enterprise.
Source(s):
CNSSI 4009-2015
NIST SP 800-12 Rev. 1 under Risk Management Framework (RMF) CNSSI 4009

The Risk Management Framework (RMF), presented in NIST SP 800-37, provides a disciplined and structured process that integrates information security and risk management activities into the system development life cycle.
Source(s):
NIST SP 800-82 Rev. 2 under Risk Management Framework NIST SP 800-37

Glossary Comments

Comments about specific definitions should be sent to the authors of the linked Source publication. For NIST publications, an email is usually found within the document.

Comments about the glossary's presentation and functionality should be sent to secglossary@nist.gov.

See NISTIR 7298 Rev. 3 for additional details.

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

Computer Security Resource Center

Computer Security Resource Center

risk management framework (RMF)

Glossary Comments