Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

NISTIR 8286 (Draft)

Integrating Cybersecurity and Enterprise Risk Management (ERM) (2nd Draft)

Date Published: July 2020
Comments Due: August 21, 2020
Email Comments to: nistir8286@nist.gov

Author(s)

Kevin Stine (NIST), Stephen Quinn (NIST), Gregory Witte (Huntington Ingalls Industries), Robert Gardner (New World Technology Partners)

Abstract

Keywords

cybersecurity risk management; cybersecurity risk measurement; cybersecurity risk profile; cybersecurity risk register; enterprise risk management (ERM); enterprise risk profile
Control Families

None selected

Documentation

Publication:
NISTIR 8286 (Draft) (DOI)
Local Download

Supplemental Material:
None available

Document History:
03/19/20: NISTIR 8286 (Draft)
07/09/20: NISTIR 8286 (Draft)

Topics

Security and Privacy
risk management

Applications
enterprise