Security and Privacy Controls for Information Systems and Organizations
RISK ASSESSMENT
The RISK ASSESSMENT Playbook addresses the following areas:
- Policy and Procedures
- Security Categorization
- Risk Assessment
- Vulnerability Monitoring and Scanning
- Technical Surveillance Countermeasures Survey
- Risk Response
- Privacy Impact Assessments
- Criticality Analysis
- Threat Hunting
The RISK ASSESSMENT Playbook is included in the Security and Privacy Controls for Information Systems and Organizations (NIST 80-53) Library which has been developed by the U.S. Department of Commerce's National Institute of Standards and Technology (NIST). It establishes controls for systems and organizations. The controls can be implemented within any organization or system that processes, stores, or transmits information.