Fedramp system Security Plan (ssp) High Baseline Template


SA-15 Development Process, Standards, and Tools (H)



Download 1.2 Mb.
Page382/478
Date16.12.2020
Size1.2 Mb.
#54609
1   ...   378   379   380   381   382   383   384   385   ...   478
FedRAMP-SSP-High-Baseline-Template
FedRAMP-SSP-High-Baseline-Template, North Carolina Summary Table of Ecoregion Characteristics

SA-15 Development Process, Standards, and Tools (H)


The organization:

  1. Requires the developer of the information system, system component, or information system service to follow a documented development process that:

    1. Explicitly addresses security requirements;

    2. Identifies the standards and tools used in the development process;

    3. Documents the specific tool options and tool configurations used in the development process; and

    4. Documents, manages, and ensures the integrity of changes to the process and/or tools used in development; and

  1. Reviews the development process, standards, tools, and tool options/configurations [FedRAMP Assignment: as needed and as dictated by the current threat posture] to determine if the process, standards, tools, and tool options/configurations selected and employed can satisfy [FedRAMP Assignment: organization and service provider- defined security requirements].



SA-15


Download 1.2 Mb.

Share with your friends:
1   ...   378   379   380   381   382   383   384   385   ...   478



The database is protected by copyright ©ininet.org 2024
send message
    Main page
united states
total number
vast majority
federal government
other side
next generation
supreme court
information contained
current state
executive director
national association
middle east
east coast
general assembly
private sector
same time
west coast
united kingdom
united nations
total amount
full range
highest level
soviet union
european union
national academy