Fedramp system Security Plan (ssp) High Baseline Template


CA-2 (2) Control Enhancement (M) (H)



Download 1.2 Mb.
Page137/478
Date16.12.2020
Size1.2 Mb.
#54609
1   ...   133   134   135   136   137   138   139   140   ...   478
FedRAMP-SSP-High-Baseline-Template
FedRAMP-SSP-High-Baseline-Template, North Carolina Summary Table of Ecoregion Characteristics

CA-2 (2) Control Enhancement (M) (H)


The organization includes as part of security control assessments, [FedRAMP Assignment: at least annually], [Selection: announced; unannounced], [Selection (one or more): in-depth monitoring; vulnerability scanning; malicious user testing; insider threat assessment; performance/load testing; [Assignment: organization-defined other forms of security assessment]].

CA-2 (2) Additional FedRAMP Requirements and Guidance:

Requirement: To include 'announced', 'vulnerability scanning’ to occur at least annually.

CA-2 (2)

Control Summary Information

Responsible Role:

Parameter CA-2 (2)-1:

Parameter CA-2 (2)-2:

Parameter CA-2 (2)-3:

Parameter CA-2 (2)-4:

Implementation Status (check all that apply):

Implemented

☐ Partially implemented

Planned

☐ Alternative implementation

Not applicable

Control Origination (check all that apply):

☐ Service Provider Corporate

☐ Service Provider System Specific

☐ Service Provider Hybrid (Corporate and System Specific)

☐ Configured by Customer (Customer System Specific)

☐ Provided by Customer (Customer System Specific)

☐ Shared (Service Provider and Customer Responsibility)

☐ Inherited from pre-existing FedRAMP Authorization for Click here to enter text. ,



CA-2 (2) What is the solution and how is it implemented?






Download 1.2 Mb.

Share with your friends:
1   ...   133   134   135   136   137   138   139   140   ...   478




The database is protected by copyright ©ininet.org 2024
send message

    Main page