🎯

Risk Management

4 frameworks in this category

Frameworks focused on identifying, assessing, and managing cybersecurity risks across organizations. These frameworks help establish risk governance, risk assessment methodologies, and risk treatment strategies.

NIST Cybersecurity Framework

National Institute of Standards and Technology•v2.0•Active
Risk ManagementIntermediateenterprise org

The NIST Cybersecurity Framework provides a policy framework of computer security guidance for how private sector organizations can assess and improve their ability to prevent, detect, and respond to cyber attacks.

Critical InfrastructureFinancial ServicesHealthcare
6
Domains
106
Controls
6
Months
Learn More

NIST Artificial Intelligence Risk Management Framework

National Institute of Standards and Technology•v1.0•Active
Risk ManagementIntermediateenterprise org

The NIST AI Risk Management Framework provides a comprehensive approach for organizations to design, develop, deploy, and use AI systems in a responsible and trustworthy manner.

Critical InfrastructureFinancial ServicesHealthcare
4
Domains
23
Controls
Learn More

ISO/IEC 27005:2022 Information Security Risk Management

International Organization for Standardization•v2022•Active
Risk ManagementIntermediateenterprise org

ISO/IEC 27005 provides guidelines for information security risk management supporting ISO/IEC 27001.

Critical InfrastructureFinancial ServicesHealthcare
6
Domains
35
Controls
Learn More

Factor Analysis of Information Risk

FAIR Institute•v2.0•Active
Risk ManagementAdvancedenterprise org

FAIR is the only international standard quantitative model for information security and operational risk.

Critical InfrastructureFinancial ServicesHealthcare
4
Domains
18
Controls
Learn More