NIST Cybersecurity Framework Lesson 5 Risk Management Strategy ID.RM

In this lesson students will learn about the importance of a Risk Management Strategy within the NIST CSF Program. This lesson on Risk Management Strategy we will review how this process guides Cybersecurity Program Risk Management from year to year in alignment with the organization’s mission and strategic goals. The Risk Management Strategy approved by the Governance Committee integrating risk-based decision making in compliance with all legal obligations and the organizations role in critical infrastructure. The Risk Management Strategy will establish a Risk Management Policy and Risk Appetite defining the organizations risk tolerance. In this lesson we will review many valuable considerations for the establishment of Risk Management Strategy. We will also provide an exercise so students can practice their newfound knowledge and develop new Cybersecurity skills.