The Defense Department's plan to adopt NIST's risk management framework means that, for the first time, defense, intelligence and civilian federal agencies will use the same set of risk management ...

Get the latest federal technology news delivered to your inbox. The need for effective cybersecurity in the federal government is more important now than ever before. Dr. Ron Ross, fellow at the ...

Moving the Defense Department's authorization process for IT systems from the DOD Information Assurance Certification and Accreditation Process to the Risk Management Framework was supposed to provide ...

Following Black Hat and revelations about the lack of security on medical devices, I asked one of our information security gurus, Mike Johnsen, for his input on the possibility of a risk management ...

The Army is launching Project Sentinel to adapt the current Risk Management Framework (RMF) process into a streamlined threat-informed risk decision process. The Army adopted the Risk Management ...

The Committee of Sponsoring Organizations of the Treadway Commission released a long-awaited update Wednesday to its ERM Framework: Enterprise Risk Management–Integrating with Strategy and Performance ...

Risk management is the process of identifying, analyzing, and mitigating uncertainties and threats that can harm your company or organization. No business venture or organizational action can ...