security management framework
C20031
concept
A security management framework is a structured set of policies, processes, roles, and controls that organizations use to systematically identify, assess, manage, and monitor security risks to their information and assets.
Observed surface forms (16)
| Surface form | Occurrences |
|---|---|
| security framework | 10 |
| cybersecurity framework | 3 |
| compliance framework | 2 |
| risk management framework | 2 |
| U.S. government security framework | 1 |
| criminal justice information protection framework | 1 |
| data protection framework | 1 |
| incident response framework | 1 |
| information risk framework | 1 |
| information risk management certification | 1 |
| information security framework | 1 |
| military cyber defence framework | 1 |
| network management security framework | 1 |
| secure software development framework | 1 |
| security control baseline | 1 |
| software identity framework | 1 |
Instances (28)
| Instance | Via concept surface |
|---|---|
| FedRAMP security controls | security control baseline |
| United Nations Security Management System | — |
| SOC 2 | compliance framework |
| P2PE | security framework |
| PCI Card Production and Provisioning Standards | compliance framework |
|
Just Enough Administration (JEA)
surface form:
Just Enough Administration
|
security framework |
| Criminal Justice Information Services Security Policy | criminal justice information protection framework |
| NATO cyber structures | military cyber defence framework |
|
User-based Security Model (USM) for version 3 of the Simple Network Management Protocol (SNMPv3)
surface form:
User-based Security Model
|
security framework |
| User-based Security Model | network management security framework |
| SASL | security framework |
| NIST Cybersecurity Framework | cybersecurity framework |
| java.security | security framework |
| Pixel security architecture | security framework |
| CERT Resilience Management Model | cybersecurity framework |
| FBI counterintelligence strategy | U.S. government security framework |
| NIST SP 800-61 | incident response framework |
| AquaLogic Service Security | security framework |
| NIST SP 800-218 | secure software development framework |
| U.S. Army information assurance program | cybersecurity framework |
| H.235 security framework | security framework |
| Identity and Access Management | security framework |
| SPIFFE | software identity framework |
| NIST Risk Management Framework | risk management framework |
| Open FAIR | information risk framework |
| Open FAIR certification | information risk management certification |
| portable security API | security framework |
| INTERPOL Rules on the Processing of Data | data protection framework |