NIST SP 800-39

E700393

NIST Special Publication information security guideline

NIST SP 800-39 is a NIST special publication that provides guidance for managing information security risk at the organizational, mission/business process, and information system levels.

Try in SPARQL Jump to: Statements Referenced by

Statements (45)

Predicate	Object
instanceOf	NIST Special Publication ⓘ information security guideline ⓘ
abbreviation	SP 800-39 NERFINISHED ⓘ
appliesTo	public sector organizations in the United States ⓘ
category	cybersecurity standard ⓘ risk management standard ⓘ
countryOfOrigin	United States of America ⓘ surface form: United States
defines	organization-wide risk management strategy ⓘ risk assessment ⓘ risk framing ⓘ risk management tiers ⓘ risk monitoring ⓘ risk response ⓘ
focus	managing information security risk at the information system level ⓘ managing information security risk at the mission/business process level ⓘ managing information security risk at the organizational level ⓘ
governingBody	National Institute of Standards and Technology NERFINISHED ⓘ
intendedAudience	chief information officers ⓘ information security professionals ⓘ information system owners ⓘ risk executives ⓘ senior leaders ⓘ
issuedBy	Information Technology Laboratory NERFINISHED ⓘ U.S. Department of Commerce NERFINISHED ⓘ
language	English ⓘ
objective	to integrate information security risk management into organizational risk management ⓘ to promote organization-wide risk-aware decision making ⓘ
promotes	alignment of information security with organizational objectives ⓘ continuous monitoring of risk ⓘ tiered approach to risk management ⓘ
providesGuidanceFor	federal agencies ⓘ federal information systems ⓘ
publicationType	federal information processing guideline ⓘ
publisher	National Institute of Standards and Technology NERFINISHED ⓘ
relatedTo	NIST Risk Management Framework NERFINISHED ⓘ NIST SP 800-30 NERFINISHED ⓘ NIST SP 800-37 NERFINISHED ⓘ NIST SP 800-53 NERFINISHED ⓘ
scope	information systems ⓘ mission and business processes ⓘ organization-wide information security risk ⓘ
series	NIST Special Publication 800-series NERFINISHED ⓘ
subject	information security risk management ⓘ risk management framework ⓘ
title	Managing Information Security Risk: Organization, Mission, and Information System View NERFINISHED ⓘ

Referenced by (1)

Full triples — surface form annotated when it differs from this entity's canonical label.

NIST SP 800 series → includes → NIST SP 800-39 ⓘ