Trackr.Live

SR-11: Component Authenticity

October 18, 2023 BrokenCypher

RMF Control SR-11: Component Authenticity requires organizations to develop and implement anti-counterfeit policy and procedures that include the means to detect and prevent counterfeit components from entering the system; and…

SC

SC-37: Out-of-band Channels

October 18, 2023 BrokenCypher

RMF Control SC-37: Out-of-band Channels requires organizations to establish and maintain out-of-band channels for the physical delivery or electronic transmission of information, system components, or devices to designated individuals or…

PM

PM-5: System Inventory

October 18, 2023 BrokenCypher

RMF Control PM-5: System Inventory requires organizations to maintain an accurate and up-to-date inventory of all information systems and their components. This inventory must include the following information: Supplemental Guidance…

CA

CA-6: Authorization

October 18, 2023 BrokenCypher

RMF Control CA-6: Authorization requires organizations to authorize the operation of information systems and the processing, storage, and transmission of information by those systems. This authorization must be based on…

AU

AU-2: Event Logging

October 18, 2023 BrokenCypher

RMF Control AU-2: Event Logging requires organizations to implement a comprehensive event logging program to collect, analyze, and retain audit logs. Audit logs are records of events that occur on…

AU

AU-1: Policy and Procedures

October 18, 2023 BrokenCypher

RMF Control AU-1: Policy and Procedures requires organizations to establish and maintain a comprehensive set of policies and procedures to address the security and privacy of information systems and the…

AT

AT-6: Training Feedback

October 18, 2023 BrokenCypher

RMF Control AT-6: Training Feedback requires organizations to solicit and incorporate feedback from personnel to continually improve the effectiveness of information security and privacy training. Supplemental Guidance The Risk Management…

AT

AT-5: Contacts with Security Groups and Associations

October 18, 2023 BrokenCypher

RMF Control AT-5: Contacts with Security Groups and Associations requires organizations to establish and institutionalize contact with selected groups and associations within the security community to facilitate ongoing security education…

AT

AT-4: Training Records

October 18, 2023 BrokenCypher

RMF Control AT-4: Training Records requires organizations to document and monitor individual information security and privacy training activities, including security and privacy awareness training and specific role-based security and privacy…

AT

AT-3: Role-based Training

October 18, 2023 BrokenCypher

RMF Control AT-3: Role-based training requires organizations to provide training and awareness to personnel on information security and the protection of Controlled Unclassified Information (CUI), based on their roles and…

Latest Post

SR-11: Component Authenticity

SC-37: Out-of-band Channels

PM-5: System Inventory

CA-6: Authorization

AU-2: Event Logging

AU-1: Policy and Procedures

AT-6: Training Feedback

AT-5: Contacts with Security Groups and Associations

AT-4: Training Records

AT-3: Role-based Training

You missed

SR-9: Tamper Resistance and Detection

SI-15: Information Output Filtering

SC-40: Wireless Link Protection

SA-10: Developer Configuration Management