💼 PM-29 Risk Management Program Leadership Roles

• ID: /frameworks/nist-sp-800-53-r5/pm/29

Description

a. Appoint a Senior Accountable Official for Risk Management to align organizational information security and privacy management processes with strategic, operational, and budgetary planning processes; and b. Establish a Risk Executive (function) to view and analyze risk from an organization-wide perspective and ensure management of risk is consistent across the organization.

Similar

• Internal
  • ID: dec-c-4d92104f

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 NIST CSF v2.0 → 💼 GV.RR-01: Organizational leadership is responsible and accountable for cybersecurity risk and fosters a culture that is risk-aware, ethical, and continually improving					no data
💼 NIST CSF v2.0 → 💼 GV.RR-02: Roles, responsibilities, and authorities related to cybersecurity risk management are established, communicated, understood, and enforced					no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance