The National Institute of Standards and Technology (NIST), in partnership with the Department of Defense (DoD) and other entities, developed a common information security framework for federal agencies and contractors to define a Risk Management Framework (RMF). This RMF is published within NIST SP 800-37 and consists of the following six step process.
For federal contractors required to become FISMA compliant, the six-step RMF is the process to follow. The team at WebCitz can help you with FISMA compliance.
Questions? Call 800-796-8263!