Information Systems Under Attack: Managing Enterprise Risk

Abstract

Today's enterprise information systems are increasingly coming under attack by sophisticated adversaries around the world including nation-states, terrorist organizations, criminals, hackers, and untrusted insiders. The NIST Risk Management Framework and supporting security standards and guidance provide tools to develop, implement, and maintain an enterprise-wide information security program capable of protecting critical organizational missions and business cases.

Download Resources