Cyber Risk and the Chief Risk Officer: What CROs Need to Know About the New NIST Risk Management Framework – 2018

In this 2018 Summit presentation… NIST is doing a major upgrade to one of its flagship security guidelines, Special Publication 800-37, the Risk Management Framework (RMF). The updated RMF 2.0, to be published this Fall, will provide many new features for Cyber Risk Officers and Enterprise Risk Management (ERM) programs. In addition to managing security risk, the RMF 2.0 will also address privacy and supply chain risks and the alignment with key constructs in the Cybersecurity Framework (CSF) as part of a comprehensive and unified ERM approach.

Speaker: Ron Ross, NIST

1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)

Disclaimer of Warranty; Due Diligence. The resources and associated files are being offered "as is," and AFERM and the contributing authors disclaims all warranties of quality, whether express or implied, including the warranties of merchantability and fitness for particular purpose. The resource content recipient acknowledges that it has not been induced by any statements or representations of any person with respect to the quality or condition of the resource and associated files and that no such statements or representations have been made.

Limitation of Liability. Neither AFERM, its officers, directors, employees, agents, or contractors nor any contributing authors will be liable for any indirect, special, consequential, or punitive damages (including lost profits) arising out of or relating to these resources and associated files (whether for breach of contract, tort, negligence, or other form of action) and irrespective of whether the AFERM or the contributing authors have been advised of the possibility of any such damage.

Leave a Reply

Your email address will not be published. Required fields are marked *