CERT Resiliency Engineering Framework available for download

CERT has made version 0.95R of its Resiliency Engineering Framework available for download. This version of the framework is an early release review version of work-in-progress. It provides a view of the framework capabilities developed to date, as well as the application of foundational process improvement concepts.

The primary purpose of releasing this version of the framework is to begin gathering feedback and suggestions. Thus, this version does not provide complete model information or details on beginning a process improvement effort.

CERT describes the Resiliency Engineering Framework as follows:

“Organizations tend to manage operational risk activities such as security, business continuity, and IT operations in a reactive posture encumbered by over-reliance on heroes, stove-piped organizational structures, and poorly defined and measured goals. This affects the organization’s operational resiliency and its ability to manage operations in constantly changing and complex risk environments. The objective of CERT’s resiliency engineering research is to define the convergence of these operational risk activities in a process improvement model—the CERT Resiliency Engineering Framework—and provide a roadmap for organizations to objectively measure and improve their resiliency engineering processes. With the focus provided by the REF, organizations can redirect scarce resources and improve capabilities for adapting to change and yet-to-be-realized disruptions with agility and confidence.”

To document and submit your comments click here.

Download the Resiliency Engineering Framework from here.

•Date: 18th March 2008• Region: US/World •Type: Article •Topic: Operational risk
Rate this article or make a comment - click here