X hits on this document

Word document

Twenty Most Important Controls and Metrics for - page 48 / 48

163 views

0 shares

0 downloads

0 comments

48 / 48

Critical Control 12: Anti-Malware Defenses

AC-3, AC-4, AC-6, AC-17, AC-19, AC-20, AT-2, AT-3, CM-5, MA-3, MA-4, MA-5, MP-2, MP-4, PE-3, PE-4, PL-4, PS-6, RA-5, SA-7, SA-12, SA-13, SC-3, SC-7, SC-11, SC-20, SC-21, SC-22, SC-23, SC-25, SC-26, SC-27, SC-29, SC-30, SC-31, SI-3, SI-8

Critical Control 13: Limitation and Control of Ports, Protocols and Services

AC-4, CM-6, CM-7, SC-7

(Also related to assessment with SP 800-53A)

Critical Control 14: Wireless Device Control

AC-17

Critical Control 15: Data Leakage Protection

AC-2, AC-4, PL-4, SC-7, SC-31, SI-4

Critical Control 16: Secure Network Engineering

AU-8, CA-2, CA-6, CM-7, SA-8, SC-7, SC-22

Critical Control 17: Red Team Exercises

CA-2, CA-6

Critical Control 18: Incident Response Capability

IR-1, IR-2, IR-3, IR-4, IR-5, IR-6, IR-7, SI-5

Critical Control 19: Disaster Recovery Capability

(Control is TBD – still under development)

CP-1, CP-2, CP-3, CP-4, CP-6, CP-7, CP-8, CP-9, CP-10

(likely based upon CAG 097 control title)

Critical Control 20: Security Skills Assessment and Appropriate Training To Fill Gaps

AT-2, AT-3, AT-4

48

Document info
Document views163
Page views163
Page last viewedThu Jan 19 13:30:11 UTC 2017
Pages48
Paragraphs617
Words15387

Comments