A suggested targeted improvement roadmap1 for using CERT-RMM to achieve FISMA compliance is provided in Table B.1.
Table B.1. Targeted Improvement Roadmap for FISMA Compliance
A suggested (but not all-inclusive) targeted improvement roadmap for measuring how well the organization is managing the potential risks when using cloud computing services is provided in Table B.2.
Table B.2. Targeted Improvement Roadmap for Cloud Computing
A suggested (but not all-inclusive) targeted improvement roadmap for measuring how well the organization is managing the potential threat posed by trusted staff is provided in Table B.3.
Table B.3. Targeted Improvement Roadmap for Managing Insider Threat