Fedramp system Security Plan (ssp) High Baseline Template


Additional FedRAMP Requirements and Guidance



Download 1.2 Mb.
Page26/478
Date16.12.2020
Size1.2 Mb.
#54609
1   ...   22   23   24   25   26   27   28   29   ...   478
FedRAMP-SSP-High-Baseline-Template
FedRAMP-SSP-High-Baseline-Template, North Carolina Summary Table of Ecoregion Characteristics
Additional FedRAMP Requirements and Guidance:

Guidance: See the FedRAMP Documents page under Key Cloud Service Provider (CSP) Documents> FedRAMP Authorization Boundary Guidance

https://www.fedramp.gov/documents/
Delete this and all other instructions from your final version of this document.

A detailed and explicit definition of the system authorization boundary diagram is represented in Figure 9 -1. Authorization Boundary Diagram below.





Figure 9‑1. Authorization Boundary Diagram
    1. Types of Users


All personnel have their status categorized with a sensitivity level in accordance with PS-2. Personnel (employees or contractors) of service providers are considered Internal Users. All other users are considered External Users. User privileges (authorization permission after authentication takes place) are described in Table 9 -15. Personnel Roles and Privileges that follows.

Instruction: For an External User, write “Not Applicable” in the Sensitivity Level Column. This table must include all roles including systems administrators and database administrators as a role types. (Also include web server administrators, network administrators and firewall administrators if these individuals have the ability to configure a device or host that could impact the CSP service offering.)

This table must also include whether these roles are fulfilled by foreign nationals or systems outside the United States.

Delete this and all other instructions from your final version of this document.

Table 9‑15. Personnel Roles and Privileges



Role


Download 1.2 Mb.

Share with your friends:
1   ...   22   23   24   25   26   27   28   29   ...   478




The database is protected by copyright ©ininet.org 2024
send message

    Main page