Fedramp system Security Plan (ssp) High Baseline Template


SA-10 Developer Configuration Management (M) (H)



Download 1.2 Mb.
Page374/478
Date16.12.2020
Size1.2 Mb.
#54609
1   ...   370   371   372   373   374   375   376   377   ...   478
FedRAMP-SSP-High-Baseline-Template
FedRAMP-SSP-High-Baseline-Template, North Carolina Summary Table of Ecoregion Characteristics

SA-10 Developer Configuration Management (M) (H)


The organization requires the developer of the information system, system component, or information system service to:

  1. Perform configuration management during system, component, or service [FedRAMP Selection: development, implementation, AND operation];

  2. Document, manage, and control the integrity of changes to [Assignment: organization-defined configuration items under configuration management];

  3. Implement only organization-approved changes to the system, component, or service;

  4. Document approved changes to the system, component, or service and the potential security impacts of such changes; and

  5. Track security flaws and flaw resolution within the system, component, or service and report findings to [Assignment: organization-defined personnel].


Download 1.2 Mb.

Share with your friends:
1   ...   370   371   372   373   374   375   376   377   ...   478



The database is protected by copyright ©ininet.org 2024
send message
    Main page
united states
total number
vast majority
federal government
other side
next generation
supreme court
information contained
current state
executive director
national association
middle east
east coast
general assembly
private sector
same time
west coast
united kingdom
united nations
total amount
full range
highest level
soviet union
european union
national academy