What is the Risk Management Framework (RMF)? A standardized security framework from the DoD

Source
Advertisement


The Risk Management Framework (RMF) was first developed by the Department of Defense (DoD) to act as criteria for strengthening and standardizing the risk management process of information security organizations. The framework later became widely adopted by the rest of the U.S. federal information systems in 2010. While originally developed by the DoD, the National Institute of Standards and Technology (NIST) now oversees the framework, which can be used by nearly any company interested in bolstering cybersecurity and risk management.

Advertisement