Enterprise Risk Integration from NIST CSF 2.0 framework

SAMMY UI is optimized for resolutions with a width 1024px and higher.

Enterprise Risk Integration

GV.RM-03: Cybersecurity risk management activities and outcomes are included in enterprise risk management processes

Ex1: Aggregate and manage cybersecurity risks alongside other enterprise risks (e.g., compliance, financial, operational, regulatory, reputational, safety)
Ex2: Include cybersecurity risk managers in enterprise risk management planning
Ex3: Establish criteria for escalating cybersecurity risks within enterprise risk management

Cybersecurity risk management activities and outcomes are included in enterprise risk management processes