Set up a target for use with NIST RMF

  • Release version: Australia
  • Updated March 12, 2026
  • 1 minute to read

    • Set up a target and populate the basic information.

    Before you begin

    Note:
    Starting with version 10.1.0, the NIST RMF Use Case Accelerator will be supported only for customers who currently use the product. New and existing customers should consider using the GRC: Continuous Authorization Monitoring application. For details, Continuous Authorization and Monitoring.

    Role required: sn_irm_nist_rmf.risk_executive or sn_irm_nist_rmf.security_officer

    Procedure

    1. Navigate to All > NIST RMF > Categorize > Impact Analysis.
    2. Search for the target using the Name or Profile fields.
    3. Open the target record.
    4. In Framework, select NIST RMF, and click Update.
    5. Open the target record again and update the following fields:
      Note:
      Review NIST RMF supporting concepts, for more detailed information about these fields.
      • RMF State: Identify the current NIST RMF state for the target.
      • Scoping Considerations: Provide guidance on the selection of security controls for implementation.
    6. Verify that the NIST RMF related lists are visible:
      • Baseline Policy Statements
      • Baseline Controls
      • Risks
      • Approvals