STIGs RMF Controls Compare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
RMF Controls
Compare Versions

Resources

About
Release Notes
VPAT
DISA STIG Library

STIGs updated 7 hours ago

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

← All Controls

PM-28

Program ManagementRev 5

Risk Framing

CCI Identifiers (8)

CCI-004454Identify and document assumptions affecting risk assessments, risk response, and risk monitoring.CCI-004455Identify and document constraints affecting risk assessments, risk response, and risk monitoring.CCI-004456Identify and document priorities and trade-offs considered by the organization for managing risk.CCI-004457Identify and document the organizational risk tolerance.CCI-004458Distribute the results of risk framing activities to organization-defined personnel.CCI-004459Defines the personnel to distribute the results of risk framing activities.CCI-004460Review and update risk framing considerations on an organization-defined frequency.CCI-004461Defines the frequency for reviewing and updating risk framing considerations.

Linked STIG Checks (0)

No STIG checks reference this control.