Esc

Operational Risk Assessment

D3-ORA
D3-ORA (Operational Risk Assessment)

Definition

Operational risk assessment identifies and models the vulnerabilities of, and risks to, an organization's activities individually and as a whole.

Synonyms: Mission Risk Assessment .
loading...
json
loading...

References

All
Internet Article
Guideline

The following references were used to develop the Operational Risk Assessment knowledge-base article.

(Note: the consideration of references does not imply specific functionality exists in an offering.)

MGT516: Managing Security Vulnerabilities: Enterprise and Cloud

Reference Type: Internet Article Organization: SANS Author: Jonathan Risto and David Hazar
Source: https://www.sans.org/cyber-security-courses/managing-enterprise-cloud-security-vulnerabilities/

NIST RMF Quick Start Guide - Assess Step - Frequently Asked Questions (FAQ)

Reference Type: Internet Article Organization: NIST
Source: https://csrc.nist.gov/CSRC/media/Projects/risk-management/documents/05-Assess%20Step/NIST%20RMF%20Assess%20Step-FAQs.pdf

NIST Special Publication 800-160 Volume 1 - Systems Security Engineering

Reference Type: Guideline Organization: NIST Author: Ron Ross, Michael McEvilley, and Janet Carrier Oren
Source: https://doi.org/10.6028/NIST.SP.800-160v1

NIST Special Publication 800-37 Revision 2 - Risk Management Framework for Information Systems and Organizations

Reference Type: Guideline Organization: NIST
Source: https://doi.org/10.6028/NIST.SP.800-37r2

NIST Special Publication 800-53A Revision 5 - Assessing Security and Privacy Controls in Information Systems and Organizations

Reference Type: Guideline Organization: NIST
Source: https://doi.org/10.6028/NIST.SP.800-53Ar5

NIST Interagency Report 8011 Volume 1 - Automation Support for Security Control Assessments

Reference Type: Guideline Organization: NIST Author: Kelley Dempsey, Paul Eavy, and George Moore
Source: https://doi.org/10.6028/NIST.IR.8011-1

A knowledge graph of cybersecurity countermeasures