Publisher's Synopsis
The Risk Management Framework (RMF) was introduced to standardize system risk management and aligns with the organizational or enterprise-wide risk management program. The RMF focuses on applying security and privacy controls at the system level and assessing their functionality in protecting the information system and protecting the organization or enterprise. The framework determines the risk the system will introduce to the organization if placed into production.This workbook walks through every step and task of the Risk Management Framework 2.0 (RMF 2.0) with specific questions that ensure the correct points are understood and retained. Each task is also linked to a video description of the task to assist with understanding. The workbook can be used with NIST SP 800-37 Revision 2, the associated videos, or other Risk Management Framework Textbooks and Lessons.