STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← All Controls

PM-29

Program ManagementRev 5organization

Risk Management Program Leadership Roles

Control Statement

a. Appoint a Senior Accountable Official for Risk Management to align organizational information security and privacy management processes with strategic, operational, and budgetary planning processes; and b. Establish a Risk Executive (function) to view and analyze risk from an organization-wide perspective and ensure management of risk is consistent across the organization.

Supplemental Guidance

The senior accountable official for risk management leads the risk executive (function) in organization-wide risk management activities.

Related Controls (2)

PM-2PM-19

CCI Identifiers (4)

CCI-004462Appoint a Senior Accountable Official for Risk Management to align organizational information security management processes with strategic, operational, and budgetary planning processes.CCI-004463Appoint a Senior Accountable Official for Risk Management to align organizational information privacy management processes with strategic, operational, and budgetary planning processes.CCI-004465Establish a Risk Executive (function) to ensure management of risk is consistent across the organization.CCI-004464Establish a Risk Executive (function) to view and analyze risk from an organization-wide perspective.

Linked STIG Checks (0)

No STIG checks reference this control.