← NIST CSF 2.0 in plain English

GV.RM-03

Govern / Risk Management Strategy

Cybersecurity risk management activities and outcomes are included in enterprise risk management processes.

Think of it likeIncluding home safety in the family's overall planning discussions alongside finances and health.

In plain English

When the family plans for big things like money, health, and the future, home security risks are part of that same conversation instead of being handled separately.