NIST SP 800-30

E532551

NIST Special Publication information security standard risk assessment guideline

NIST SP 800-30 is a National Institute of Standards and Technology guidance document that provides a structured methodology for conducting risk assessments in information security.

Try in SPARQL Jump to: Surface forms Statements Referenced by

All labels observed (1)

Label	Occurrences
NIST SP 800-30 canonical	2

Statements (49)

Predicate	Object
instanceOf	NIST Special Publication ⓘ information security standard ⓘ risk assessment guideline ⓘ
appliesTo	federal information systems ⓘ information systems ⓘ information technology ⓘ
author	National Institute of Standards and Technology NERFINISHED ⓘ
countryOfOrigin	United States of America ⓘ surface form: United States
defines	impact ⓘ likelihood ⓘ risk ⓘ risk assessment process ⓘ risk factors ⓘ threat events ⓘ threat sources ⓘ vulnerabilities ⓘ
field	cybersecurity ⓘ information security ⓘ risk management ⓘ
focusesOn	risk assessment ⓘ
language	English ⓘ
objective	to provide guidance for conducting risk assessments of federal information systems ⓘ to support effective information security risk management ⓘ
partOf	NIST Special Publication 800 series NERFINISHED ⓘ
provides	guidance for determining impact of adverse events ⓘ guidance for determining likelihood of adverse events ⓘ guidance for determining risk levels ⓘ guidance for identifying threats ⓘ guidance for identifying vulnerabilities ⓘ structured methodology for conducting risk assessments ⓘ
publisher	National Institute of Standards and Technology NERFINISHED ⓘ
recommends	documenting risk assessment results ⓘ ongoing monitoring of risk ⓘ periodic risk assessments ⓘ
relatedTo	FIPS 199 NERFINISHED ⓘ FIPS 200 NERFINISHED ⓘ NIST SP 800-37 NERFINISHED ⓘ NIST SP 800-39 NERFINISHED ⓘ
supports	NIST Risk Management Framework NERFINISHED ⓘ
targetAudience	information system security officers ⓘ risk executives ⓘ senior information security officers ⓘ system owners ⓘ
usedBy	federal agencies ⓘ information security practitioners ⓘ risk managers ⓘ
usedFor	conducting information security risk assessments ⓘ supporting risk-based decision making ⓘ supporting system authorization decisions ⓘ

Referenced by (2)

Full triples — surface form annotated when it differs from this entity's canonical label.

Special Publications → hasPart → NIST SP 800-30 ⓘ

NIST SP 800 series → includes → NIST SP 800-30 ⓘ