Posts

My thoughts and ideas

  • RMF Implement

    CGRC  · 

    NIST Risk Management Framework

    RMF Implement

    This is the series of articles to use as a study guide for the (ISC)2 CGRC exam. In this article, we will discuss the Implement steps in the Risk Management Framework.

    Implement Tasks

    • I-1 – Control Implementation
    • I-2 – Update Control implementation information
    • Primary roles for...

  • RMF Select

    CGRC  · 

    NIST Risk Management Framework

    RMF Select

    This is the series of articles to use as a study guide for the (ISC)2 CGRC exam. In this article, we will discuss the Select steps in the Risk Management Framework.

    Select Tasks

    • S-1 – Control Selection
    • S-2 – Control Tailoring
    • S-3 – Control Allocation
    • S-4...

  • RMF Categorize

    CGRC  · 

    NIST Risk Management Framework

    RMF Categorize

    This is the series of articles to use as a study guide for the (ISC)2 CGRC exam. In this article, we will discuss the Categorize steps in the Risk Management Framework.

    Categorize Tasks

    FIPS 199

    CMSS 1253

    • C-1 – System Description
    • C-2 – Security Categorization
    • C-3...

  • RMF Prepare

    CGRC  · 

    NIST Risk Management Framework

    RMF Prepare

    This is the series of articles to use as a study guide for the (ISC)2 CGRC exam. In this article, we will discuss the Prepare steps in the Risk Management Framework.

    Organization-level Tasks

    • P-1 – Risk Management Roles
    • P-2 – Risk Management Strategy
    • P-3 – Organization...

  • Governance Risk and Compliance - Risk Management Framework

    CGRC  · 

    CGRC and the NIST Risk Management Framework

    RMF and other standards for the CGRC exam

    This is the first of a series of articles to use as a study guide for the (ISC)2 CGRC exam.

    Primary Roles for Risk Management

    • Authorizing Official (AO)
    • AO DR – can perform Authorizing tasks EXCEPT signing...