The Shift to Dynamic Risk Management
Static requirements are those policies, procedures, and reports that define the boundaries of the framework and set up a management system. The dynamic requirements are the day-to-day systems, processes, and activities that manage risks.