Moving the Defense Department's authorization process for IT systems from the DOD Information Assurance Certification and Accreditation Process to the Risk Management Framework was supposed to provide ...

Following Black Hat and revelations about the lack of security on medical devices, I asked one of our information security gurus, Mike Johnsen, for his input on the possibility of a risk management ...

The National Institute of Standards and Technology recently published the final version of its latest Risk Management Framework, gifting companies across all sectors with a comprehensive new roadmap ...

The Army is launching Project Sentinel to adapt the current Risk Management Framework (RMF) process into a streamlined threat-informed risk decision process. The Army adopted the Risk Management ...

What is a risk management framework? Implementing the principles and guidelines of a risk management framework (RMF) is not just an effective way to manage current risks, it also provides a structured ...

A new framework for cybersecurity risk management reporting unveiled Wednesday by the AICPA can help businesses meet a growing challenge and creates a new engagement for CPAs to examine and report on ...

The Committee of Sponsoring Organizations of the Treadway Commission released a long-awaited update Wednesday to its ERM Framework: Enterprise Risk Management–Integrating with Strategy and Performance ...

The software maker’s Security Risk Management Framework (SRMF) helps leadership prioritize mitigation decisions and ensures everyone is informed about the latest cybersecurity challenges and risks.