. 3.4 ASSESSMENT, AUTHORIZATION, AND MONITORING | NIST SP 800-53

Security and Privacy Controls for Information Systems and Organizations
. Table of Contents
. Executive Summary
. Prologue
. Errata
. News
CHAPTER ONE, INTRODUCTION
CHAPTER TWO, THE FUNDAMENTALS
CHAPTER THREE, THE CONTROLS
. 3.1 ACCESS CONTROL
. 3.2 AWARENESS AND TRAINING
. 3.3 AUDIT AND ACCOUNTABILITY
. 3.4 ASSESSMENT, AUTHORIZATION, AND MONITORING
. 3.5 CONFIGURATION MANAGEMENT
. 3.6 CONTINGENCY PLANNING
. 3.7 IDENTIFICATION AND AUTHENTICATION
. 3.8 INCIDENT RESPONSE
. 3.9 MAINTENANCE
. 3.10 MEDIA PROTECTION
. 3.11 PHYSICAL AND ENVIRONMENTAL PROTECTION
. 3.12 PLANNING
. 3.13 PROGRAM MANAGEMENT
. 3.14 PERSONNEL SECURITY
. 3.15 PERSONALLY IDENTIFIABLE INFORMATION PROCESSING AND TRANSPARENCY
. 3.16 RISK ASSESSMENT
. 3.17 SYSTEM AND SERVICES ACQUISITION
. 3.18 SYSTEM AND COMMUNICATIONS PROTECTION
. 3.19 SYSTEM AND INFORMATION INTEGRITY
. 3.20 SUPPLY CHAIN RISK MANAGEMENT
. REFERENCES
. GLOSSARY
. ACRONYMS
. CONTROL SUMMARIES
- -- TABLE C-1 ACCESS CONTROL FAMILY

This site uses Just the Docs, a documentation theme for Jekyll.

Just the Docs on GitHub

3.4 ASSESSMENT, AUTHORIZATION, AND MONITORING

Quick link to Assessment, Authorization, and Monitoring Summary Table

Table of contents

-- CA-1 POLICY AND PROCEDURES
-- CA-2 CONTROL ASSESSMENTS
-- CA-3 INFORMATION EXCHANGE
-- CA-4 SECURITY CERTIFICATION
-- CA-5 PLAN OF ACTION AND MILESTONES
-- CA-6 AUTHORIZATION
-- CA-7 CONTINUOUS MONITORING
-- CA-8 PENETRATION TESTING
-- CA-9 INTERNAL SYSTEM CONNECTIONS

Copyright © 2017-2020 Patrick Marsceill. Distributed by an MIT license.

Edit this page on GitHub