Chapter 13 Risk Management

Information in this chapter:

• Fundamentals of Risk Management

• Enterprise Risk Management and the Risk Management Framework

• Risk Management as an Input to Decision Making

• Managing Risk Associated with Information and Information Systems

• Performing Risk Assessments on Information Systems

Risk Management

The Federal Information Security Management Act defines information security as “the protection of information and information systems from unauthorized access, use, disclosure, disruption, modification, or destruction” in order to safeguard their confidentiality, integrity, and availability [1]. No organization can provide perfect information security that fully assures the protection of information and information ...

Get FISMA and the Risk Management Framework now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

FISMA and the Risk Management Framework by Daniel R. Philpott, Stephen D. Gantz

Chapter 13

Risk Management

Information in this chapter:

Risk Management

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly