Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

NIST SP 800-30

Risk Management Guide for Information Technology Systems

Date Published: July 2002

Supersedes: FIPS 65 (08/01/1979); FIPS 31 (06/01/1974)

Author(s)

Gary Stoneburner (NIST), Alice Goguen (BAH), Alexis Feringa (BAH)

Abstract

Keywords

cost-benefit analysis; residual risk; risk; risk assessment; risk management; risk mitigation; security controls; threat; vulnerability
Control Families

None selected

Documentation

Publication:
https://doi.org/10.6028/NIST.SP.800-30
Download URL

Supplemental Material:
None available

Document History:
07/01/02: SP 800-30 (Final)