Managing Information Security Risk: Organization, Mission, and Information System View

Citation: NIST, Enterprise-Wide Risk Management: Organization, Mission, and Information Systems View, SP 800-39.

Overview
This report is planned for publication in January 2011. It will provide an approach for managing that portion of risk resulting from the incorporation of information systems into the mission and business processes of an organization.