CSURFACE CSURFACE THREAT SENSOR
  • Home
  • Analytics
  • News
  • About
  • Tools
    • Constellation
  • Libraries
    • CWE
    • CAPEC
    • MITRE ATT&CK
    • MITRE D3FEND
    • OWASP Top 10
    • Ransomware Groups
    • References
  • Support
  • EN | PT
  1. Home
  2. MITRE D3FEND
  3. D3-ORA

D3-ORA

Model
Operational Risk Assessment

Definition

Operational risk assessment identifies and models the vulnerabilities of, and risks to, an organization's activities individually and as a whole.

References

Reference - MGT516: Managing Security Vulnerabilities: Enterprise and Cloud Reference - NIST RMF Quick Start Guide - Assess Step - Frequently Asked Questions (FAQ) Reference - NIST Special Publication 800-160 Volume 1 - System Security Engineering Reference - NIST Special Publication 800-37 Revision 2 - Risk Management Framework for Information Systems and Organizations Reference - NIST Special Publication 800-53A Revision 5 - Assessing Security and Privacy Controls in Information Systems and Organizations Reference - NISTIR 8011 Volume 1 - Automation Support for Security Control Assessments

Source

View on MITRE D3FEND

Counters ATT&CK

No direct ATT&CK mappings.