CERT Resilience Management Model (RMM): A Maturity Model for by Richard A. Caralli

By Richard A. Caralli

CERT® Resilience administration version (CERT-RMM) is an leading edge and transformative approach to deal with operational resilience in complicated, risk-evolving environments. CERT-RMM distills years of study into most sensible practices for handling the protection and survivability of individuals, details, know-how, and amenities. It integrates those most sensible practices right into a unified, capability-focused adulthood version that encompasses protection, company continuity, and IT operations. through the use of CERT-RMM, enterprises can get away silo-driven methods to handling operational threat and align to accomplish strategic resilience administration ambitions.   This ebook either introduces CERT-RMM and provides the version in its entirety. It starts with crucial heritage for all execs, whether or not they have formerly used technique development versions or no longer. subsequent, it explains CERT-RMM’s universal ambitions and Practices and discusses quite a few techniques for utilizing the version. brief essays by way of a couple of members illustrate how CERT-RMM may be utilized for various reasons or can be utilized to enhance an current software. eventually, the ebook presents an entire baseline knowing of all 26 strategy parts incorporated in CERT-RMM.   half One summarizes the price of a strategy development method of coping with resilience, explains CERT-RMM’s conventions and middle rules, describes the version architecturally, and exhibits how itsupports relationships tightly associated with your goals.   half specializes in utilizing CERT-RMM to set up a beginning for maintaining operational resilience administration techniques in complicated environments the place hazards speedily emerge and alter.   half 3 info all 26 CERT-RMM strategy parts, from asset definition via vulnerability answer. for every, whole descriptions of ambitions and practices are provided, with life like examples.   half 4 includes appendices, together with detailed development Roadmaps, a word list, and different reference fabrics.   This ebook should be useful to someone looking to enhance the venture coverage of high-value providers, together with leaders of enormous firm or organizational devices, protection or company continuity experts, managers of enormous IT operations, and people utilizing methodologies akin to ISO 27000, COBIT, ITIL, or CMMI.

Show description

Read or Download CERT Resilience Management Model (RMM): A Maturity Model for Managing Operational Resilience (SEI Series in Software Engineering) PDF

Best quality control & management books

Six Sigma for Everyone

A pragmatic, uncomplicated consultant to 6 Sigma for staff in enterprises considering or imposing Six Sigma From famous Six Sigma advisor and writer George Eckes, Six Sigma for everybody explains the underpinnings of the progressive caliber insurance technique, deals in-depth examples, and descriptions the influence and wanted final result of implementation.

Value Stream Mapping for Lean Development: A How-To Guide for Streamlining Time to Market

Shoppers and markets establish wishes and difficulties and corporations layout services and products to fill or clear up them. whereas this dating could seem straight forward, the improvement approach in such a lot businesses is usually a root reason for purchaser dissatisfaction and will bring about enormous waste all through an firm.

101 Ways to Improve Business Performance (101 Ways)

Do you want to enhance a space of your online business talents? do you want a brief resource of knowledge? every one identify comprises a hundred and one ways that to profit and increase new abilities to make you successful at paintings and at domestic.

The Six Sigma Revolution: How General Electric and Others Turned Process Into Profits

Utilizing this innovative administration technique to force confident swap in an organizationCurrently exploding onto the yankee company scene, the Six Sigma technique fuels superior effectiveness and potency in a firm; in keeping with common Electric's Jack Welch, it is the "most very important initiative [they] have ever undertaken.

Additional info for CERT Resilience Management Model (RMM): A Maturity Model for Managing Operational Resilience (SEI Series in Software Engineering)

Sample text

CERT-RMM achieves its objectives by focusing on the improvement of the operational resilience management process, with services as the beneficiary of improvement. 21 Wow! Com> 22 PART ONE ABOUT THE CERT RESILIENCE MANAGEMENT MODEL • • • • • • • • pervasive use of technology operational complexity increased reliance on intangible assets, such as digital information and software global economy and economic pressures open borders geopolitical and cultural shifts regulatory and legal constraints a view of security as an IT problem, not an organization-wide concern The explosion of computing power and cheap storage means that technology is in everyone’s hands.

Any service in the organization that is of value to meeting the organization’s mission should be made resilient. Services rely on assets to achieve their missions. In CERT-RMM, assets are limited to people, information, technology, and facilities. A service that produces a product may also rely on raw materials, but these assets are outside of the immediate scope of CERT-RMM. However, the use of CERT-RMM in a production environment is not precluded, since people, information, technology, and facilities are a critical part of delivering a product, and their operational resilience can be managed through the practices in CERT-RMM.

A capability maturity model (in the likeness of CMMI) is a much more complex instrument, with several distinguishing features. One of these features is that the maturity dimension in the model is a characterization of the maturity of processes. Thus, what is conveyed in a capability maturity model is the degree to which processes are institutionalized and the degree to which the organization demonstrates process maturity. As you will learn in Chapter 5, these concepts correlate to the description of the “levels” in CMMI.

Download PDF sample

Rated 4.04 of 5 – based on 24 votes