Difference between revisions of "Category:GIC-NISTSP80037r1FPD"

Latest revision as of 03:28, 16 December 2009

1 Table of Contents
2 Prologue
3 Footnotes
4 Sources

FRONT MATTER (Discussion)
CHAPTER ONE INTRODUCTION (Discussion)
- 1.1 BACKGROUND
- 1.2 PURPOSE AND APPLICABILITY
- 1.3 TARGET AUDIENCE
- 1.4 ORGANIZATION OF THIS SPECIAL PUBLICATION
CHAPTER TWO THE FUNDAMENTALS (Discussion)
- 2.1 INTEGRATED ENTERPRISE-WIDE RISK MANAGEMENT
- 2.2 SYSTEM DEVELOPMENT LIFE CYCLE
- 2.3 INFORMATION SYSTEM BOUNDARIES
- 2.4 SECURITY CONTROL ALLOCATION
CHAPTER THREE THE PROCESS (Discussion)
- 3.1 RMF STEP 1 – CATEGORIZE INFORMATION SYSTEM
- 3.2 RMF STEP 2 – SELECT SECURITY CONTROLS
- 3.3 RMF STEP 3 – IMPLEMENT SECURITY CONTROLS
- 3.4 RMF STEP 4 – ASSESS SECURITY CONTROLS
- 3.5 RMF STEP 5 – AUTHORIZE INFORMATION SYSTEM
- 3.6 RMF STEP 6 – MONITOR SECURITY CONTROLS
APPENDIX A REFERENCES (Discussion)
APPENDIX B GLOSSARY (Discussion)
APPENDIX C ACRONYMS (Discussion)
APPENDIX D ROLES AND RESPONSIBILITIES (Discussion)
APPENDIX E SUMMARY OF RMF TASKS (Discussion)
APPENDIX F SECURITY AUTHORIZATION (Discussion)
APPENDIX G CONTINUOUS MONITORING (Discussion)
APPENDIX H OPERATIONAL SCENARIOS (Discussion)
APPENDIX I SECURITY CONTROLS IN EXTERNAL ENVIRONMENTS (Discussion)

Prologue

"...Through the process of risk management, leaders must consider risk to U.S. interests from adversaries using cyberspace to their advantage and from our own efforts to employ the global nature of cyberspace to achieve objectives in military, intelligence, and business operations..." "...For operational plans development, the combination of threats, vulnerabilities, and impacts must be evaluated in order to identify important trends and decide where effort should be applied to eliminate or reduce threat capabilities; eliminate or reduce vulnerabilities; and assess, coordinate, and deconflict all cyberspace operations..." "...Leaders at all levels are accountable for ensuring readiness and security to the same degree as in any other domain..."

-- THE NATIONAL STRATEGY FOR CYBERSPACE OPERATIONS

OFFICE OF THE CHAIRMAN, JOINT CHIEFS OF STAFF, U.S. DEPARTMENT OF DEFENSE

Footnotes

Sources

NIST SP 800-37 Rev. 1 DRAFT Guide for Applying the Risk Management Framework to Federal Information Systems: A Security Life Cycle Approach

Subcategories

This category has only the following subcategory.

G

► GIC-NISTSP80037r1FPD‎ (1 C, 23 P)

Pages in category "GIC-NISTSP80037r1FPD"

The following 23 pages are in this category, out of 23 total.

I

@@ Line 30: / Line 30: @@
 *[[Industry:Project_Review/NIST_SP_800-37r1_FPD_Appendix_G|APPENDIX G CONTINUOUS MONITORING]] ([[Talk:Industry:Project_Review/NIST_SP_800-37r1_FPD_Appendix_G|Discussion]])
 *[[Industry:Project_Review/NIST_SP_800-37r1_FPD_Appendix_H|APPENDIX H OPERATIONAL SCENARIOS]] ([[Talk:Industry:Project_Review/NIST_SP_800-37r1_FPD_Appendix_H|Discussion]])
+*[[Industry:Project_Review/NIST_SP_800-37r1_FPD_Appendix_I|APPENDIX I SECURITY CONTROLS IN EXTERNAL ENVIRONMENTS]] ([[Talk:Industry:Project_Review/NIST_SP_800-37r1_FPD_Appendix_I|Discussion]])

Difference between revisions of "Category:GIC-NISTSP80037r1FPD"

Latest revision as of 03:28, 16 December 2009

Table of Contents

Prologue

Footnotes

Sources

Subcategories

G

Pages in category "GIC-NISTSP80037r1FPD"

I

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools