In this assignment, students will review the risk management framework (RMF).
Provide an overview of the framework in a visual graphic format of the six steps in the process and provide a brief description of what happens in each. Then, in 750-1,000 words, explain the following:
- The number of controls/sub-controls found in the framework
- The categories used in the risk-based approach
- Why today’s organizations should base security program strategy and decisions upon it
- The differences between risk management and enterprise risk management
Make sure to reference academic or NIST official publications (most current year available via the Internet) or other relevant sources published within the last 5 years.