Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock
()
or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Use the fully defined ISA to conduct an organization-wide security and privacy risk assessment.
Use the fully defined ISA to formally define enterprise, business process, and information system level risk tolerance and appetite levels necessary for prioritizing and guiding risk management decisions.
Use the fully defined ISA to update the list of high value assets by considering risks from the supporting business functions and mission impacts.
Use the fully defined ISA to assess enterprise, business process, and information system level risks.
Use the fully defined ISA to identify and update NRC risk
management policies, procedures, and strategy.