From the course: Implementing the NIST Risk Management Framework
Join today to access over 24,900 courses taught by industry experts.
Establishing monitoring goals
From the course: Implementing the NIST Risk Management Framework
Establishing monitoring goals
Change is inevitable. This is especially true for our information technology, where any change has the possibility of altering security and privacy controls. That's why we need to take steps to continually maintain an ongoing situational awareness about the security and privacy posture of our information systems, applications, and operations. We do that through monitoring, which is the final step in the NIST RMF. Think about it. The only time you can stop monitoring a system is when it's no longer operational, after it's end of life. In the Monitor step of the NIST RMF, the goal is for system owners and authorizing officials to maintain ongoing situational awareness about the security and privacy posture of the system and organization to support risk management decisions. It's no longer "set it and forget it." Instead, we should continually verify the security of the system. There are seven primary tasks in the Monitor step: system and environmental changes, ongoing assessments and…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.