From the course: Implementing the NIST Risk Management Framework (2020)
Join today to access over 24,000 courses taught by industry experts.
Preparing a risk-based approach to security
From the course: Implementing the NIST Risk Management Framework (2020)
Preparing a risk-based approach to security
- [Instructor] The NIST RMF prepare step ensures that organizations are ready to execute the RMF by establishing the context and priorities for managing enterprise-wide security and privacy risk. This is done at two primary levels; from a strategic organizational perspective and a more granular system or operational level perspective. I'll touch on the high points for each of these steps and corresponding tasks. For more information, see NIST SP 800-37 Rev. 2. The preparation phase primary goals include; facilitate communication between senior leaders and system owners and operators, prioritize requirements and resource allocation, recognize common security controls and the development of organizationally tailored control baselines, and to identify prioritize, and focus resources on high value assets. These objectives can significantly reduce the organization's information technology footprint and the attack surface and…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.