NIST SP 800-37 Rev 1, Guide for Applying the Risk Management Framework to Federal Information Systems
Product Description
NIST SP 800-37 Rev 1, Guide for Applying the Risk Management Framework to Federal Information Systems
The purpose of SP 800-37 Rev 1 is to provide guidelines for applying the Risk Management Framework to federal information systems to include conducting the activities of security categorization, security control selection and implementation, security control assessment, information system authorization, and security control monitoring.
Technical Specifications
You might also like
Security and Privacy Controls for Federal Information Systems and Organizations (NIST SP 800-53, Revision 4)
NIST Special Publication 800-137 Information Security Continuous Monitoring for Federal Information Systems and Organizations
Guide for Conducting Risk Assessments
NIST Special Publication 800-39, Managing Information Security Risk: Organization, Mission, and Information System View
NIST Special Publication 800-53A Guide for Assessing the Security Controls in Federal Information Systems and Organizations