Video Description

In this lesson, Subject Matter Expert (SME) Kelly Handerhan continues the discussion of the documents that are important to the Risk Management Framework (RMF). Handerhan discusses the following documents: ### · NIST 800-53, REV 4 – Recommended Security Controls for Federal Information Systems and Organizations - NIST 800-60 – Guide for Mapping Types of Information and Information Systems to Security Categories In this lesson, you will learn about: - the multi-tiered risk management approach - security control structures - configuring minimum security control baselines - security control designations - standards for external service providers - having a specific and structured methodology for identifying and categorizing correctly these information systems - the global information grid

Course Modules