翻訳と辞書 Words near each other ・ Risk Godstorm ・ Risk governance ・ Risk II ・ Risk inclination formula ・ Risk inclination model ・ Risk Information Exchange ・ Risk intelligence ・ Risk International ・ Risk IT ・ Risk limiting post-election audit ・ Risk management ・ Risk Management (magazine) ・ Risk Management Agency ・ Risk Management Authority (Scotland) ・ Risk Management Exchange ・ Risk management framework ・ Risk management in Indian banks ・ Risk management information systems ・ Risk management plan ・ Risk Management Programme ・ Risk management tools ・ Risk Matrix ・ Risk measure ・ Risk metric ・ Risk neutral ・ Risk of infection ・ Risk of loss ・ Risk of Missed PRRS PCR Detection ・ Risk of mortality ・ Risk of Rain Dictionary Lists mini英和辞書 mini和英辞書 Webster 1913 Latin-English FOLDOC Wikipedia English ウィキペディア

翻訳と辞書　辞書検索 [ 開発暫定版 ] スポンサード リンク Risk management framework ： ウィキペディア英語版 Risk management framework NIST Special Publication 800-37, "Guide for Applying the Risk Management Framework to Federal Information Systems", developed by the Joint Task Force Transformation Initiative Working Group, transforms the traditional Certification and Accreditation (C&A) process into the six-step Risk Management Framework (RMF). The Risk Management Framework (RMF), illustrated at right, provides a disciplined and structured process that integrates information security and risk management activities into the system development life cycle.〔Guide for Applying the Risk Management Framework to Federal Information Systems〕 The RMF steps include: * Categorize the information system and the information processed, stored, and transmitted by that system based on an impact analysis. * Select an initial set of baseline security controls for the information system based on the security categorization; tailoring and supplementing the security control baseline as needed based on an organizational assessment of risk and local conditions. * Implement the security controls and describe how the controls are employed within the information system and its environment of operation. * Assess the security controls using appropriate assessment procedures to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system. * Authorize information system operation based on a determination of the risk to organizational operations and assets, individuals, other organizations, and the Nation resulting from the operation of the information system and the decision that this risk is acceptable. * Monitor the security controls in the information system on an ongoing basis including assessing control effectiveness, documenting changes to the system or its environment of operation, conducting security impact analyses of the associated changes, and reporting the security state of the system to designated organizational officials. ==References== 抄文引用元・出典: フリー百科事典『 ウィキペディア（Wikipedia）』 ■ウィキペディアで「Risk management framework」の詳細全文を読む スポンサード リンク 翻訳と辞書 : 翻訳のためのインターネットリソース Copyright(C) kotoba.ne.jp 1997-2016. All Rights Reserved.