Risk Management and Compliance
- NIST Integrating Cybersecurity and Enterprise Risk Management (NSTIR 8286)
- Risk is a Four Letter Word (New Cyber Frontier Interview)
- Rational Cybersecurity (Dan Blum - Apress)
- Risk Assessment Methods for Cloud Computing Platforms (T. Weil)
- FAIR methods for Quantatative Risk Assessment (Dan Blum)
- Defending the US in the Digital Age (Dr. Ron Ross)
- Risk Management Framework
- Streamline Risk Management(SANS WP)
- FedRAMP(dot)Gov
- ISO 27001 Certification Resources
- EBIOS Risk Assessment Methodology (SecNumCloud)
- Coalfire ISO Portal
- NIST Cybersecurity Framework
- EU Interoperable Cybersecurity Risk Frameworks (2022)