Beruflich Dokumente
Kultur Dokumente
Complexity
TIER 2
Mission / Business Process
(Information and Information Flows)
TACTICAL RISK
FOCUS
TIER 3
Information System
(Environment of Operation)
Assess Respond
Risk
Risk Risk
Monitor Framing
Framing
INFORMATION INFORMATION
Security SYSTEM SYSTEM Security
Assessment Assessment
Report System-specific System-specific Report
Controls Controls
Hybrid Controls
Hybrid Controls
RISK
MANAGEMENT
FRAMEWORK
(RMF)
COMMON CONTROLS
Security Controls Inherited by Organizational Information Systems
Security
Security Plan of Action and
Assessment
Plan Milestones
Report