O'Reilly logo

Risk Management Framework by James Broad

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Introduction

Part I covers the basics of compliance, including laws and regulations, that mandate systems like the RMF. It discusses the history of certification and accreditation and its evolution into the RMF and the RMF’s integration into the system development lifecycle (SDLC). It also introduces the Department of Social Media (DSM), the organization used for the exercises in this book.

The mantra of any good security engineer is: “Security is a not a product, but a process.” It's more than designing strong cryptography into a system; it's designing the entire system such that all security measures, including cryptography, work together.

— Bruce Schneier

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required