A planned, systematic set of multidisciplinary activities that seek to identify, manage, and reduce risk of exploitable vulnerabilities at every stage of the system, network, or sub-component life cycle (system, network, or product design and development; manufacturing; packaging; assembly; system integration; distribution; operations; maintenance; and retirement).

See NISTIR 7622 under Defense-in-Breadth (CNSSI 4009-2010), NIST SP 800-161 under Defense-in-Breadth (CNSSI 4009), and CNSSI 4009-2015 for more information.

For more information, also see:

NIST SP 800-30 Rev. 1 under Defense-in-Breadth (CNSSI 4009
NIST SP 800-39 under Defense-in-Breadth (CNSSI 4009
NIST SP 800-53 Rev. 4 under Defense-in-Breadth (CNSSI 4009

Share this Post