Risk Management Framework

The cornerstone of the NIPP is its risk analysis and management framework. NIPP 2013 builds upon and updates the risk management framework.

This framework consists of several components, including three interwoven elements of critical infrastructure (physical, cyber and human) and five steps toward implementing the risk management framework.

The elements are integrated through information sharing feedback loop, as appropriate. In addition, this framework minimizes the number of steps or “chevrons” by including prioritization with the implementation of risk management activities.

Click on each chevron to access more information about these steps

Click on “Elements of Critical Infrastructure” or “Information Sharing Feedback Loop” for more information about these features of the risk management framework

Physical, Cyber and Human ElementsSet Infrastructure Goals and ObjectivesIdentify InfrastructureAssess and Analyze RisksImplement Risk Management ActivitiesMeasure EffectivenessInformation Sharing Loop
Elements of Critical Infrastructure. Physical, Cyber, Human. Set Goals and Objectives. Identify Infrastructure. Assess and Analyze Risks. Implement Risk Management Activities. Measure Effectiveness. Information sharing.
Select this link to access NIPP 2013 Section 5. Collaborating to Manage Risk (Refer to Pages 15-20)