In a memorandum published Oct. 30, DoD Chief Information Officer Terry Halvorsen and Defense Acquisition Undersecretary Frank Kendall said program managers will be able to develop, test and sustain resilient systems if they apply the guidebookâs risk management framework.
The guidebook describes the concepts on how to implement risk management framework activities in systems security engineering, program protection planning, networks analysis, evaluations, financial management and disposal.
DoD also presents system security engineering practices, sample request for proposal language and risk assessment processes in the guidebook.