NISTIR 8286CNISTIRFinalpublication

NISTIR 8286C - Staging Cybersecurity Risks for Enterprise Risk Management and Governance Oversight

Describes how to stage and communicate cybersecurity risk information for enterprise risk management and governance oversight. Addresses risk aggregation, normalization, and presentation for executive-level decision making.

View on NIST.gov

Publication Number

8286C

Series

NISTIR

Status

Final

Date

2022-02

risk staginggovernanceERMexecutive reporting

References(1)

NISTIR 8286NISTIR 8286 - Integrating Cybersecurity and Enterprise Risk Management (ERM)

Companion Documents(1)

NISTIR 8286NISTIR 8286 - Integrating Cybersecurity and Enterprise Risk Management (ERM)