Commonwelth of Massachusetts - Information Security Risk Management Standard
This standard defines the key elements of the Commonwealth’s information security risk assessment model to enable consistent identification, evaluation, response and monitoring of risks facing IT processes.