|
CA-2 (2) Control Enhancement (M) (H)
|
| Page | 137/478 | | Date | 16.12.2020 | | Size | 1.2 Mb. | | #54609 |
| FedRAMP-SSP-High-Baseline-Template FedRAMP-SSP-High-Baseline-Template, North Carolina Summary Table of Ecoregion Characteristics CA-2 (2) Control Enhancement (M) (H)
The organization includes as part of security control assessments, [FedRAMP Assignment: at least annually], [Selection: announced; unannounced], [Selection (one or more): in-depth monitoring; vulnerability scanning; malicious user testing; insider threat assessment; performance/load testing; [Assignment: organization-defined other forms of security assessment]].
CA-2 (2) Additional FedRAMP Requirements and Guidance:
Requirement: To include 'announced', 'vulnerability scanning’ to occur at least annually.
CA-2 (2)
|
Control Summary Information
|
Responsible Role:
|
Parameter CA-2 (2)-1:
|
Parameter CA-2 (2)-2:
|
Parameter CA-2 (2)-3:
|
Parameter CA-2 (2)-4:
|
Implementation Status (check all that apply):
☐ Implemented
☐ Partially implemented
☐ Planned
☐ Alternative implementation
☐ Not applicable
|
Control Origination (check all that apply):
☐ Service Provider Corporate
☐ Service Provider System Specific
☐ Service Provider Hybrid (Corporate and System Specific)
☐ Configured by Customer (Customer System Specific)
☐ Provided by Customer (Customer System Specific)
☐ Shared (Service Provider and Customer Responsibility)
☐ Inherited from pre-existing FedRAMP Authorization for Click here to enter text. ,
|
CA-2 (2) What is the solution and how is it implemented?
|
|
Share with your friends: |
|
|
