STIGs RMF Controls Compare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
RMF Controls
Compare Versions

Resources

About
Release Notes
VPAT
DISA STIG Library

STIGs updated 7 hours ago

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

← All Controls

PM-9

Program ManagementRev 5

Risk Management Strategy

CCI Identifiers (5)

CCI-000227Develop a comprehensive strategy to manage security risk to organizational operations and assets, individuals, other organizations, and the Nation associated with the operation and use of information systems.CCI-000228Implement the risk management strategy consistently across the organization.CCI-002994Review and update the risk management strategy in accordance with organization-defined frequency or as required, to address organizational changes.CCI-002995Defines the frequency with which to review and update the risk management strategy to address organizational changes.CCI-004345Develop a comprehensive strategy to manage privacy risk to individuals resulting from the authorized processing of personally identifiable information.

Linked STIG Checks (0)

No STIG checks reference this control.