Procedures for monitoring use of information processing systems and facilities shall be established to check for use and effectiveness of implemented controls. provides supplemental material for Special Publication 800-171 including templates for plans of action. Federal agencies may consider the submitted system security plans and plans of action as critical inputs to an overall risk management decision to process, store, or transmit CUI on a system hosted by a nonfederal organization and whether it is advisable to pursue an agreement or contract with the nonfederal organization. Organizations can document the system security plan and plan of action as separate or combined documents and in any chosen format. Organizations develop plans of action that describe how any unimplemented security requirements will be met and how any planned mitigations will be implemented. The plan of action is a key document in the information security program. Restrict audit logs access to authorized personnel and maintain records that provide unique access accountability. Stateful responses to communications initiated by system components in a trusted network. Inbound traffic from untrusted networks to trusted networks is restricted to: Communications with system components that are authorized to provide publicly accessible services, protocols, and ports. Define, implement and evaluate processes, procedures and technical measures to ensure the security and retention of audit logs.
0 kommentar(er)
