From the course: Implementing the NIST Risk Management Framework
Join today to access over 24,900 courses taught by industry experts.
Determining in-scope systems
From the course: Implementing the NIST Risk Management Framework
Determining in-scope systems
When your preparation is complete or complete enough, you'll move to the Categorize step. This video provides tips for categorizing organizational information systems, processes, and roles. Here, you'll classify the criticality of the information and systems by determining their sensitivity or value and potential adverse impact or consequences to the organization, which then drives future security decisions. The purpose of the Risk Management Framework's, or RMF, Categorize step, is to guide and inform subsequent risk management processes and tasks by determining the adverse impact or consequences to the organization with respect to the compromise or loss of organizational assets, including the confidentiality, integrity, and availability of organizational systems and the information processed, stored and transmitted by those systems. The outcome of this step includes documenting the characteristics of the system, Basically, information about the system under consideration…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.