AuditRubric
prioritization

prioritization Controls

5 controls across 1 framework.

NIST CSF

gv-rm-6

A standardized method for calculating, documenting, categorizing, and prioritizing cybersecurity risks is established and communicated

Govern / Risk Management Strategy
id-am-5

Assets are prioritized based on classification, criticality, and mission impact

Identify / Asset Management
id-ra-5

Risk information is used to understand inherent risk and prioritize responses

Identify / Risk Assessment
rc-rp-2

Select, scope, prioritize, and perform recovery actions

Recover / Incident Recovery Plan Execution
rs-ma-3

Categorize and prioritize incidents

Respond / Incident Management