From the course: Implementing the NIST Risk Management Framework
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Setting NIST RMF assessment goals
From the course: Implementing the NIST Risk Management Framework
Setting NIST RMF assessment goals
- The next step in the NIST risk management framework is assessing control within the environment for any gaps and risks. The purpose of the assessed step is to determine if the controls selected for implementation are implemented correctly, operating as needed and producing the desired outcome. With respect to meeting the security and privacy requirements for the system and the organization. The controls should be appropriately reducing risks to your organization and systems and data. For a successful assessment, the following are required elements, preparation, listing the control frameworks and baselines, documenting your assessment scope, selecting the assessor, access to organizational personnel, policies, plans, and systems, and your documentation with your system and security privacy assessment plans. To prepare for the assessment, you take the output from the previous steps, categorize, select, and implement.…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.