💼 Risk Management Strategy (ID.RM)
- ID:
/frameworks/nist-csf-v1.1/id-rm
Description​
The organization's priorities, constraints, risk tolerances, and assumptions are established and used to support operational risk decisions.
Similar​
- Internal
- ID:
dec-b-9840777b
- ID:
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 ID.RM-1: Risk management processes are established, managed, and agreed to by organizational stakeholders | no data | ||||
| 💼 ID.RM-2: Organizational risk tolerance is determined and clearly expressed | no data | ||||
| 💼 ID.RM-3: The organization's determination of risk tolerance is informed by its role in critical infrastructure and sector specific risk analysis | no data |