Identify and involve the relevant stakeholders of the risk management process as planned.
Measure and control the risk management process against the plan for performing the process and take appropriate corrective action.
Objectively evaluate adherence of the risk management process against its process description, standards, and procedures, and address non-compliance.
Review the activities, status, and results of the risk management process with higher level managers and resolve issues.
Risk management is institutionalized as a defined process.
Establish and maintain the description of a defined risk management process.
Collect risk management work products, measures, measurement results, and improvement information derived from planning and performing the process to support future use and improvement of the organization’s processes and process assets.
The organization’s enterprise-level resilience requirements are identified and established.
The resilience requirements of the enterprise are established.
The resilience requirements for services are developed and established based on the service mission and the requirements of supporting assets.
Passcode