Skip to content
Home / Function (NIST CSF 2.0) / ID - Identify

RA – Risks Asst

NIST CSF Category ID.RA
Risk assessment is a cornerstone of cybersecurity, and normative documents are essential in providing structured methodologies and legal expectations for evaluating threats, vulnerabilities, and potential impacts. Standards such as ISO/IEC 27005 for information security risk management and NIST SP 800-30 for risk assessment guidance outline best practices for identifying, analyzing, and prioritizing risks to information systems. Regulatory frameworks like the EU NIS2 Directive or the Gramm-Leach-Bliley Act (GLBA) in the U.S. require organizations to perform documented risk assessments as part of compliance obligations. By adhering to these standards and regulations, organizations can make informed decisions on risk mitigation, ensure accountability, and build trust with stakeholders while aligning with national and international cybersecurity expectations.

NIST IR 8286 Integrating Cybersecurity and Enterprise Risk Management (ERM)

NIST IR 8286 Rev. 1, Integrating Cybersecurity and Enterprise Risk Management (ERM), provides a strategic framework for bridging the gap between technical security operations and high-level business decision-making. It emphasizes… Read More »NIST IR 8286 Integrating Cybersecurity and Enterprise Risk Management (ERM)

NIST IR 8286A Identifying and Estimating Cybersecurity Risk for Enterprise Risk Management

NIST IR 8286A Rev. 1, Identifying and Estimating Cybersecurity Risk for Enterprise Risk Management, serves as a specialized companion to the main framework by providing deep-dive methodologies for the initial… Read More »NIST IR 8286A Identifying and Estimating Cybersecurity Risk for Enterprise Risk Management

CIS Controls Internet of Things Companion Guide

The CIS Controls Internet of Things (IoT) Companion Guide provides detailed guidance on how to apply the cybersecurity best practices of the CIS Controls, particularly Version 8.1, to IoT environments.… Read More »CIS Controls Internet of Things Companion Guide