0% found this document useful (0 votes)

65 views

CSF To SP 800-171 Mapping Disclaimer: Function CSF Subcategory CUI Requirement

This document provides a mapping between security requirements in the Cybersecurity Framework and NIST SP 800-171, which focuses on protecting Controlled Unclassified Information in non-federal systems. Some requirements do not map between the frameworks because they have different scopes, with SP 800-171 solely concerned with data confidentiality. Users should not assume satisfaction of one framework's requirements will satisfy the other's, as they also have different purposes despite some overlapping security objectives.

Uploaded by

Raja

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as XLSX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

65 views

CSF To SP 800-171 Mapping Disclaimer: Function CSF Subcategory CUI Requirement

Uploaded by

Raja

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as XLSX, PDF, TXT or read online on Scribd

You are on page 1/ 32

CSF to SP 800-171 Mapping Disclaimer

This documents provides a mapping between the Cybersecurity Framework (CSF) Subcategories and the Controlled Unclassifie
mappings included in this document show an equivalency of requirements (in whole or in part) between the two publicatio
and using this mapping.

NIST SP 800-171 focuses on protecting the confidentiality of Controlled Unclassified Information (CUI) in nonfederal systems
requirements recommended for use in SP 800-171 are derived from FIPS Publication 200 and the moderate security control ba
Controlled Unclassified Information). The tailoring criteria applied to the FIPS Publication 200 security requirements and the N
requirements and controls—rather, the tailoring criteria focuses on the protection of CUI from unauthorized disclosure in no

Since the security requirements are derivative from the NIST publications listed above, organizations should not assume that s
controls in FIPS Publication 200 and Special Publication 800-53. In addition to the security objective of confidentiality, the obje
establishing and maintaining a comprehensive information security program. While the primary purpose of SP 800-171 is to de
confidentiality and integrity since many of the underlying security mechanisms at the system level support both security objec

Some SP 800-171 security requirements are not mapped to any CSF subcategories due to the scoping of SP 800-171 which is f
requirements supporting availability and integrity are not addressed in SP 800-171) and assumes some security best practices
Appendix E). Note also that some CSF subcategories are not mapped to SP 800-171 CUI security requirements for similar reaso
protect CUI. The following are the SP 800-171 security requirements that could not logically be mapped to CSF subcategories:

Function CSF Subcategory CUI Requirement

ID.AM-1 3.4.1

ID.AM-2 3.4.1

ID.AM-3 3.1.3

ID.AM-3 3.13.1

ID.AM-4 3.1.20

ID.AM-4 3.1.21

ID.AM-5

ID.AM-6

ID.BE-1

ID.BE-2
ID.BE-3

ID.BE-4

ID.BE-5

ID.GV-1

ID.GV-2

ID.GV-3

ID.GV-4

ID.RA-1 3.11.1

ID.RA-1 3.11.2
IDENTIFY
(ID)
ID.RA-1 3.12.1

ID.RA-1 3.12.3

ID.RA-1 3.14.1

ID.RA-1 3.14.3

ID.RA-1 3.14.6

ID.RA-1 3.14.7

ID.RA-2 3.14.1

ID.RA-2 3.14.3

ID.RA-3 3.11.1

ID.RA-3 3.14.1
ID.RA-3 3.14.3

ID.RA-4 3.11.1

ID.RA-5 3.11.1

ID.RA-6

ID.RM-1

ID.RM-2

ID.RM-3

PR.AC-1 3.5.1

PR.AC-1 3.5.2

PR.AC-1 3.5.5

PR.AC-1 3.5.6

PR.AC-1 3.5.7

PR.AC-1 3.5.8

PR.AC-1 3.5.9

PR.AC-1 3.5.10

PR.AC-1 3.5.11

PR.AC-2 3.10.1

PR.AC-2 3.10.2

PR.AC-2 3.10.3

PR.AC-2 3.10.4

PR.AC-2 3.10.5
PR.AC-3 3.1.1

PR.AC-3 3.1.2

PR.AC-3 3.1.14

PR.AC-3 3.1.15

PR.AC-3 3.1.18

PR.AC-3 3.1.20

PR.AC-3 3.13.9

PR.AC-3 3.13.12

PR.AC-4 3.1.1

PR.AC-4 3.1.2

PR.AC-4 3.1.4

PR.AC-4 3.1.5

PR.AC-4 3.1.6

PR.AC-4 3.1.7

PR.AC-4 3.1.8

PR.AC-4 3.1.10

PR.AC-4 3.1.11

PR.AC-4 3.5.3

PR.AC-4 3.5.4
PR.AC-4 3.13.3

PR.AC-4 3.13.4

PR.AC-5 3.1.3

PR.AC-5 3.13.1

PR.AC-5 3.13.2

PR.AC-5 3.13.5

PR.AC-5 3.13.6

PR.AC-5 3.13.7

PR.AT-1 3.2.1

PR.AT-1 3.2.2

PR.AT-1 3.2.3

PR.AT-2 3.2.1

PR.AT-2 3.2.2

PR.AT-3
PR.AT-4 3.2.1

PR.AT-4 3.2.2

PR.AT-5 3.2.1

PR.AT-5 3.2.2

PR.DS-1 3.1.19

PR.DS-1 3.8.1

PR.DS-1 3.8.9

PR.DS-1 3.13.10

PR.DS-1 3.13.16

PR.DS-2 3.1.13

PR.DS-2 3.1.17

PR.DS-2 3.8.5

PR.DS-2 3.13.8

PR.DS-2 3.13.10

PR.DS-3 3.4.1

PR.DS-3 3.8.1

PR.DS-3 3.8.2

PR.DS-3 3.8.3
PR.DS-3 3.8.5

PR.DS-4

PR.DS-5 3.1.4

PR.DS-5 3.1.13

PR.DS-5 3.2.3

PR.DS-5 3.9.2

PR.DS-5 3.13.1

PR.DS-5 3.13.5

PR.DS-5 3.13.6

PR.DS-5 3.13.7

PR.DS-5 3.13.8

PR.DS-5 3.13.11

PR.DS-5 3.13.16

PR.DS-5 3.14.6

PR.DS-6

PR.DS-7
PR.IP-1 3.4.1

PR.IP-1 3.4.2

PR.IP-1 3.4.6

PR.IP-1 3.4.7

PR.IP-1 3.4.8

PR.IP-2

PR.IP-3 3.4.3

PR.IP-3 3.4.4

PR.IP-3 3.4.5

PR.IP-4

PR.IP-5

PR.IP-6 3.8.3

PR.IP-7

PR.IP-8

PR.IP-9 3.6.1

PR.IP-9 3.6.2

PR.IP-10 3.6.3
PR.IP-11 3.9.1

PR.IP-11 3.9.2

PR.IP-12 3.11.2

PR.IP-12 3.11.3

PR.IP-12 3.12.2

PR.IP-12 3.12.3

PR.IP-12 3.14.1

PR.IP-12 3.14.2

PR.IP-12 3.14.3

PR.MA-1 3.7.1

PR.MA-1 3.7.2

PR.MA-1 3.7.3

PR.MA-1 3.7.4

PR.MA-1 3.7.6

PR.MA-2 3.7.5

PR.PT-1 3.3.1

PR.PT-1 3.3.2
PR.PT-1 3.3.3

PR.PT-1 3.3.4

PR.PT-1 3.3.5

PR.PT-1 3.3.6

PR.PT-1 3.3.7

PR.PT-1 3.3.8

PR.PT-1 3.3.9

PR.PT-2 3.8.1

PR.PT-2 3.8.2

PR.PT-2 3.8.3

PR.PT-2 3.8.4

PR.PT-2 3.8.5

PR.PT-2 3.8.6

PR.PT-2 3.8.7

PR.PT-2 3.8.8

PR.PT-3 3.1.1

PR.PT-3 3.1.2
PR.PT-3 3.4.6

PR.PT-3 3.4.7

PR.PT-3 3.4.8

PR.PT-4 3.1.16

PR.PT-4 3.1.17

PR.PT-4 3.13.1

PR.PT-4 3.13.2

PR.PT-4 3.13.5

PR.PT-4 3.13.6

PR.PT-4 3.13.7

PR.PT-4 3.13.15

DE.AE-1

DE.AE-2 3.3.1

DE.AE-2 3.3.2

DE.AE-2 3.3.5
DE.AE-2 3.6.1

DE.AE-2 3.14.6

DE.AE-2 3.14.7

DE.AE-3 3.3.5

DE.AE-4 3.11.1

DE.AE-5 3.6.1

DE.AE-5 3.6.2

DE.CM-1 3.13.1

DE.CM-1 3.14.6

DE.CM-1 3.14.7

DE.CM-2 3.10.2

DE.CM-2 3.10.3

DE.CM-3 3.1.12

DE.CM-3 3.3.1

DE.CM-3 3.3.2

DE.CM-3 3.4.9

DETECT
(DE)
DETECT
(DE) DE.CM-4 3.14.1

DE.CM-4 3.14.2

DE.CM-4 3.14.3

DE.CM-4 3.14.4

DE.CM-4 3.14.5

DE.CM-5 3.13.13

DE.CM-6 3.14.6

DE.CM-6 3.14.7

DE.CM-7 3.1.12

DE.CM-7 3.3.1

DE.CM-7 3.10.2

DE.CM-7 3.10.3

DE.CM-7 3.14.6

DE.CM-7 3.14.7

DE.CM-8 3.11.2

DE.DP-1

DE.DP-2 3.12.1

DE.DP-2 3.12.3
DE.DP-2 3.14.6

DE.DP-2 3.14.7

DE.DP-3 3.10.4

DE.DP-3 3.12.1

DE.DP-3 3.12.3

DE.DP-4

DE.DP-5

RS.RP-1 3.6.2

RS.CO-1 3.6.3

RS.CO-2 3.6.2

RS.CO-3

RS.CO-4 3.6.1

RS.CO-5

RS.AN-1 3.3.5

RS.AN-1 3.6.1

RS.AN-1 3.6.2

RS.AN-2 3.11.1

RS.AN-3
RS.AN-4 3.6.1

RS.AN-4 3.6.2

RS.MI-1 3.6.1

RS.MI-1 3.6.2

RS.MI-2 3.6.1

RS.MI-2 3.6.2

RS.MI-3 3.11.1

RS.MI-3 3.11.2

RS.MI-3 3.11.3

RS.MI-3 3.12.2

RS.MI-3 3.12.4

RS.MI-3 3.14.1

RS.IM-1 3.6.1

RS.IM-1 3.6.2

RS.IM-2 3.6.2
RC.RP-1 3.6.1

RC.RP-1 3.6.2

RC.IM-1 3.6.1

RC.IM-1 3.6.2

RC.IM-2 3.6.1

RC.IM-2 3.6.2

RC.CO-1

RC.CO-2

RC.CO-3 3.6.1

RC.CO-3 3.6.2
Framework (CSF) Subcategories and the Controlled Unclassified Information (CUI) Requirements in NIST Special Publication (SP) 800-171.
quirements (in whole or in part) between the two publications. It is important to consider the different scope between the two publica

ntrolled Unclassified Information (CUI) in nonfederal systems and organizations, and recommends specific security requirements to ach
rom FIPS Publication 200 and the moderate security control baseline in NIST Special Publication 800-53 and are based on the CUI regulatio
d to the FIPS Publication 200 security requirements and the NIST Special Publication 800-53 security controls is not an endorsement for th
s on the protection of CUI from unauthorized disclosure in nonfederal systems and organizations.

blications listed above, organizations should not assume that satisfying those particular requirements will automatically satisfy the security
n addition to the security objective of confidentiality, the objectives of integrity and availability remain a high priority for organizations tha
rity program. While the primary purpose of SP 800-171 is to define requirements to protect the confidentiality of CUI, there is a close relati
y mechanisms at the system level support both security objectives.

CSF subcategories due to the scoping of SP 800-171 which is focused solely on protecting the confidentiality of CUI in nonfederal systems (
ssed in SP 800-171) and assumes some security best practices to be routinely satisfied by nonfederal organizations as part of conducting bu
pped to SP 800-171 CUI security requirements for similar reasons or because the SP 800-171 requirements are aligned with specific federa
ents that could not logically be mapped to CSF subcategories: 3.1.22; 3.10.6; and 3.13.14.

CUI Requirement Description

Establish and maintain baseline configurations and inventories of organizational systems (including hardware, software, firmw
throughout the respective system development life cycles.

Control the flow of CUI in accordance with approved authorizations.

Monitor, control, and protect communications (i.e., information transmitted or received by organizational systems) at the exte
internal boundaries of organizational systems.

Verify and control/limit connections to and use of external systems.

Limit use of organizational portable storage devices on external systems.

No mapping; see Mapping Disclaimer.

Periodically assess the risk to organizational operations (including mission, functions, image, or reputation), organizational ass
resulting from the operation of organizational systems and the associated processing, storage, or transmission of CUI.

Scan for vulnerabilities in organizational systems and applications periodically and when new vulnerabilities affecting the syste

Periodically assess the security controls in organizational systems to determine if the controls are effective in their application

Monitor security controls on an ongoing basis to ensure the continued effectiveness of the controls.

Identify, report, and correct information and system flaws in a timely manner.

Monitor system security alerts and advisories and take actions in response.

Monitor organizational systems, including inbound and outbound communications traffic, to detect attacks and indicators of p

Identify unauthorized use of organizational systems.

Identify, report, and correct information and system flaws in a timely manner.

Monitor system security alerts and advisories and take actions in response.

Identify, report, and correct information and system flaws in a timely manner.
Monitor system security alerts and advisories and take actions in response.

No mapping; see Mapping Disclaimer.

Identify system users, processes acting on behalf of users, and devices.

Authenticate (or verify) the identities of those users, processes, or devices, as a prerequisite to allowing access to organization

Prevent reuse of identifiers for a defined period.

Disable identifiers after a defined period of inactivity.

Enforce a minimum password complexity and change of characters when new passwords are created.

Prohibit password reuse for a specified number of generations.

Allow temporary password use for system logons with an immediate change to a permanent password.

Store and transmit only cryptographically-protected passwords.

Obscure feedback of authentication information.

Limit physical access to organizational systems, equipment, and the respective operating environments to authorized individu

Protect and monitor the physical facility and support infrastructure for organizational systems.

Escort visitors and monitor visitor activity.

Maintain audit logs of physical access.

Control and manage physical access devices.

Limit system access to authorized users, processes acting on behalf of authorized users, and devices (including other systems)

Limit system access to the types of transactions and functions that authorized users are permitted to execute.

Route remote access via managed access control points.

Authorize remote execution of privileged commands and remote access to security-relevant information.

Control connection of mobile devices.

Verify and control/limit connections to and use of external systems.

Terminate network connections associated with communications sessions at the end of the sessions or after a defined period

Prohibit remote activation of collaborative computing devices and provide indication of devices in use to users present at the

Limit system access to authorized users, processes acting on behalf of authorized users, and devices (including other systems)

Limit system access to the types of transactions and functions that authorized users are permitted to execute.

Separate the duties of individuals to reduce the risk of malevolent activity without collusion.

Employ the principle of least privilege, including for specific security functions and privileged accounts.

Use non-privileged accounts or roles when accessing nonsecurity functions.

Prevent non-privileged users from executing privileged functions and audit the execution of such functions.

Limit unsuccessful logon attempts.

Use session lock with pattern-hiding displays to prevent access and viewing of data after period of inactivity.

Terminate (automatically) a user session after a defined condition.

Use multifactor authentication for local and network access to privileged accounts and for network access to non-privileged ac

Employ replay-resistant authentication mechanisms for network access to privileged and non-privileged accounts.
Separate user functionality from system management functionality.

Prevent unauthorized and unintended information transfer via shared system resources.

Control the flow of CUI in accordance with approved authorizations.

Monitor, control, and protect communications (i.e., information transmitted or received by organizational systems) at the exte
internal boundaries of organizational systems.

Employ architectural designs, software development techniques, and systems engineering principles that promote effective in
organizational systems.

Implement subnetworks for publicly accessible system components that are physically or logically separated from internal net

Deny network communications traffic by default and allow network communications traffic by exception (i.e., deny all, permit

Prevent remote devices from simultaneously establishing non-remote connections with organizational systems and communic
connection to resources in external networks. (i.e. split tunneling).

Ensure that managers, systems administrators, and users of organizational systems are made aware of the security risks assoc
and of the applicable policies, standards, and procedures related to the security of those systems.

Ensure that organizational personnel are adequately trained to carry out their assigned information security-related duties an

Provide security awareness training on recognizing and reporting potential indicators of insider threat.

Ensure that organizational personnel are adequately trained to carry out their assigned information security-related duties an

No mapping; see Mapping Disclaimer.

Ensure that organizational personnel are adequately trained to carry out their assigned information security-related duties an

Encrypt CUI on mobile devices and mobile computing platforms.

Protect (i.e., physically control and securely store) system media containing CUI, both paper and digital.

Protect the confidentiality of backup CUI at storage locations.

Establish and manage cryptographic keys for cryptography employed in organizational systems.

Protect the confidentiality of CUI at rest.

Employ cryptographic mechanisms to protect the confidentiality of remote access sessions.

Protect wireless access using authentication and encryption.

Control access to media containing CUI and maintain accountability for media during transport outside of controlled areas.

Implement cryptographic mechanisms to prevent unauthorized disclosure of CUI during transmission unless otherwise protec
physical safeguards.

Establish and manage cryptographic keys for cryptography employed in organizational systems.

Establish and maintain baseline configurations and inventories of organizational systems (including hardware, software, firmw
throughout the respective system development life cycles.

Protect (i.e., physically control and securely store) system media containing CUI, both paper and digital.

Limit access to CUI on system media to authorized users.

Sanitize or destroy system media containing CUI before disposal or release for reuse.
Control access to media containing CUI and maintain accountability for media during transport outside of controlled areas.

No mapping; see Mapping Disclaimer.

Separate the duties of individuals to reduce the risk of malevolent activity without collusion.

Employ cryptographic mechanisms to protect the confidentiality of remote access sessions.

Provide security awareness training on recognizing and reporting potential indicators of insider threat.

Ensure that CUI and organizational systems containing CUI are protected during and after personnel actions such as terminatio

Monitor, control, and protect communications (i.e., information transmitted or received by organizational systems) at the exte
internal boundaries of organizational systems.

Implement subnetworks for publicly accessible system components that are physically or logically separated from internal net

Deny network communications traffic by default and allow network communications traffic by exception (i.e., deny all, permit

Prevent remote devices from simultaneously establishing non-remote connections with organizational systems and communic
connection to resources in external networks. (i.e. split tunneling).

Implement cryptographic mechanisms to prevent unauthorized disclosure of CUI during transmission unless otherwise protec
physical safeguards.

Employ FIPS-validated cryptography when used to protect the confidentiality of CUI.

Protect the confidentiality of CUI at rest.

Monitor organizational systems, including inbound and outbound communications traffic, to detect attacks and indicators of p

No mapping; see Mapping Disclaimer.

Establish and maintain baseline configurations and inventories of organizational systems (including hardware, software, firmw
throughout the respective system development life cycles.

Establish and enforce security configuration settings for information technology products employed in organizational systems.

Employ the principle of least functionality by configuring organizational systems to provide only essential capabilities.

Restrict, disable, and prevent the use of nonessential, functions, ports, protocols, or services.

Apply deny-by-exception (blacklist) policy to prevent the use of unauthorized software or deny- all, permit-by-exception (whit
the execution of authorized software.

No mapping; see Mapping Disclaimer.

Track, review, approve or disapprove, and audit changes to organizational systems.

Analyze the security impact of changes prior to implementation.

Define, document, approve, and enforce physical and logical access restrictions associated with changes to organizational syst

No mapping; see Mapping Disclaimer.

Sanitize or destroy system media containing CUI before disposal or release for reuse.

No mapping; see Mapping Disclaimer.

Establish an operational incident-handling capability for organizational systems that includes preparation, detection, analysis,
and user response activities.

Track, document, and report incidents to appropriate organizational officials and/or authorities.

Test the organizational incident response capability.

Screen individuals prior to authorizing access to organizational systems containing CUI.

Ensure that CUI and organizational systems containing CUI are protected during and after personnel actions such as terminatio

Scan for vulnerabilities in organizational systems and applications periodically and when new vulnerabilities affecting the syste

Remediate vulnerabilities in accordance with assessments of risk.

Develop and implement plans of action designed to correct deficiencies and reduce or eliminate vulnerabilities in organization

Monitor security controls on an ongoing basis to ensure the continued effectiveness of the controls.

Identify, report, and correct system flaws in a timely manner.

Provide protection from malicious code at appropriate locations within organizational systems.

Monitor system security alerts and advisories and take actions in response.

Perform maintenance on organizational systems.

Provide controls on the tools, techniques, mechanisms, and personnel used to conduct system maintenance.

Ensure equipment removed for off-site maintenance is sanitized of any CUI.

Check media containing diagnostic and test programs for malicious code before the media are used in organizational systems.

Supervise the maintenance activities of maintenance personnel without required access authorization.

Require multifactor authentication to establish nonlocal maintenance sessions via external network connections and terminat
nonlocal maintenance is complete.

Create and retain system audit records to the extent needed to enable the monitoring, analysis, investigation, and reporting o
or inappropriate system activity.

Ensure that the actions of individual system users can be uniquely traced to those users so they can be held accountable for th
Review and update audited events.

Alert in the event of an audit process failure.

Correlate audit review, analysis, and reporting processes for investigation and response to indications of inappropriate, suspic

Provide audit reduction and report generation to support on-demand analysis and reporting.

Provide a system capability that compares and synchronizes internal system clocks with an authoritative source to generate ti
records.

Protect audit information and audit tools from unauthorized access, modification, and deletion.

Limit management of audit functionality to a subset of privileged users.

Protect (i.e., physically control and securely store) system media containing CUI, both paper and digital.

Limit access to CUI on system media to authorized users.

Sanitize or destroy system media containing CUI before disposal or release for reuse.

Mark media with necessary CUI markings and distribution limitations.

Control access to media containing CUI and maintain accountability for media during transport outside of controlled areas.

Implement cryptographic mechanisms to protect the confidentiality of CUI stored on digital media during transport outside of
otherwise protected by alternative physical safeguards.

Control the use of removable media on system components.

Prohibit the use of portable storage devices when such devices have no identifiable owner.

Limit system access to authorized users, processes acting on behalf of authorized users, and devices (including other systems)

Limit system access to the types of transactions and functions that authorized users are permitted to execute.
Employ the principle of least functionality by configuring organizational systems to provide only essential capabilities.

Restrict, disable, and prevent the use of nonessential, functions, ports, protocols, or services.

Apply deny-by-exception (blacklist) policy to prevent the use of unauthorized software or deny- all, permit-by-exception (whit
the execution of authorized software.

Authorize wireless access prior to allowing such connections.

Protect wireless access using authentication and encryption.

Monitor, control, and protect communications (i.e., information transmitted or received by organizational systems) at the exte
internal boundaries of organizational systems.

Employ architectural designs, software development techniques, and systems engineering principles that promote effective in
organizational systems.

Implement subnetworks for publicly accessible system components that are physically or logically separated from internal net

Deny network communications traffic by default and allow network communications traffic by exception (i.e., deny all, permit

Prevent remote devices from simultaneously establishing non-remote connections with organizational systems and communic
connection to resources in external networks. (i.e. split tunneling).

Protect the authenticity of communications sessions.

No mapping; see Mapping Disclaimer.

Create and retain system audit records to the extent needed to enable the monitoring, analysis, investigation, and reporting o
or inappropriate system activity.

Ensure that the actions of individual system users can be uniquely traced to those users so they can be held accountable for th

Correlate audit review, analysis, and reporting processes for investigation and response to indications of inappropriate, suspic
Establish an operational incident-handling capability for organizational systems that includes preparation, detection, analysis,
and user response activities.

Monitor organizational systems, including inbound and outbound communications traffic, to detect attacks and indicators of p

Identify unauthorized use of organizational systems.

Correlate audit review, analysis, and reporting processes for investigation and response to indications of inappropriate, suspic

Establish an operational incident-handling capability for organizational systems that includes adequate preparation, detection
recovery, and user response activities.

Track, document, and report incidents to appropriate organizational officials and/or authorities.

Monitor, control, and protect communications (i.e., information transmitted or received by organizational systems) at the exte
internal boundaries of organizational systems.

Monitor organizational systems, including inbound and outbound communications traffic, to detect attacks and indicators of p

Identify unauthorized use of organizational systems.

Protect and monitor the physical facility and support infrastructure for organizational systems.

Escort visitors and monitor visitor activity.

Monitor and control remote access sessions.

Create, protect, and retain system audit records to the extent needed to enable the monitoring, analysis, investigation, and re
unauthorized, or inappropriate system activity.

Ensure that the actions of individual system users can be uniquely traced to those users so they can be held accountable for th

Control and monitor user-installed software.

Identify, report, and correct system flaws in a timely manner.

Provide protection from malicious code at appropriate locations within organizational systems.

Monitor system security alerts and advisories and take actions in response.

Update malicious code protection mechanisms when new releases are available.

Perform periodic scans of organizational systems and real-time scans of files from external sources as files are downloaded, op

Control and monitor the use of mobile code.

Monitor organizational systems, including inbound and outbound communications traffic, to detect attacks and indicators of p

Identify unauthorized use of organizational systems.

Monitor and control remote access sessions.

Create, protect, and retain system audit records to the extent needed to enable the monitoring, analysis, investigation, and re
unauthorized, or inappropriate system activity.

Protect and monitor the physical facility and support infrastructure for organizational systems.

Escort visitors and monitor visitor activity.

Monitor organizational systems, including inbound and outbound communications traffic, to detect attacks and indicators of p

Identify unauthorized use of organizational systems.

Scan for vulnerabilities in organizational systems and applications periodically and when new vulnerabilities affecting the syste

No mapping; see Mapping Disclaimer.

Periodically assess the security controls in organizational systems to determine if the controls are effective in their application

Monitor security controls on an ongoing basis to ensure the continued effectiveness of the controls.
Monitor organizational systems, including inbound and outbound communications traffic, to detect attacks and indicators of p

Identify unauthorized use of organizational systems.

Maintain audit logs of physical access.

Periodically assess the security controls in organizational systems to determine if the controls are effective in their application

Monitor security controls on an ongoing basis to ensure the continued effectiveness of the controls.

No mapping; see Mapping Disclaimer.

Track, document, and report incidents to appropriate organizational officials and/or authorities.

Test the organizational incident response capability.

Track, document, and report incidents to appropriate organizational officials and/or authorities.

No mapping; see Mapping Disclaimer.

Establish an operational incident-handling capability for organizational systems that includes adequate preparation, detection
recovery, and user response activities.

No mapping; see Mapping Disclaimer.

Correlate audit review, analysis, and reporting processes for investigation and response to indications of inappropriate, suspic

Establish an operational incident-handling capability for organizational systems that includes adequate preparation, detection
recovery, and user response activities.

Track, document, and report incidents to appropriate organizational officials and/or authorities.

No mapping; see Mapping Disclaimer.

Establish an operational incident-handling capability for organizational systems that includes adequate preparation, detection
recovery, and user response activities.

Track, document, and report incidents to appropriate organizational officials and/or authorities.

Establish an operational incident-handling capability for organizational systems that includes adequate preparation, detection
recovery, and user response activities.

Track, document, and report incidents to appropriate organizational officials and/or authorities.

Establish an operational incident-handling capability for organizational systems that includes adequate preparation, detection
recovery, and user response activities.

Track, document, and report incidents to appropriate organizational officials and/or authorities.

Scan for vulnerabilities in organizational systems and applications periodically and when new vulnerabilities affecting the syste

Remediate vulnerabilities in accordance with assessments of risk.

Develop and implement plans of action designed to correct deficiencies and reduce or eliminate vulnerabilities in organization

Develop, document, and periodically update system security plans that describe system boundaries, system environments of
requirements are implemented, and the relationships with or connections to other systems.

Identify, report, and correct information and system flaws in a timely manner.

Establish an operational incident-handling capability for organizational systems that includes adequate preparation, detection
recovery, and user response activities.

Track, document, and report incidents to appropriate organizational officials and/or authorities.

Track, document, and report incidents to appropriate organizational officials and/or authorities.
Establish an operational incident-handling capability for organizational systems that includes adequate preparation, detection
recovery, and user response activities.

Track, document, and report incidents to appropriate organizational officials and/or authorities.

Establish an operational incident-handling capability for organizational systems that includes adequate preparation, detection
recovery, and user response activities.

Track, document, and report incidents to appropriate organizational officials and/or authorities.

Establish an operational incident-handling capability for organizational systems that includes adequate preparation, detection
recovery, and user response activities.

Track, document, and report incidents to appropriate organizational officials and/or authorities.

No mapping; see Mapping Disclaimer.

Establish an operational incident-handling capability for organizational systems that includes adequate preparation, detection
recovery, and user response activities.

Track, document, and report incidents to appropriate organizational officials and/or authorities.

2016 GSTD - BDA Training
100% (7)
2016 GSTD - BDA Training
87 pages
FINAL FOI Request Form - Annex B
100% (3)
FINAL FOI Request Form - Annex B
1 page
7 Procurement Best Practices Handbook
100% (1)
7 Procurement Best Practices Handbook
44 pages
CIS Controls v8.1 Mapping To NIST CSF v2.0 6-24-2024 Final 1
No ratings yet
CIS Controls v8.1 Mapping To NIST CSF v2.0 6-24-2024 Final 1
92 pages
Dmaic: Focused Improvement Nestlé Continuous Excellence
No ratings yet
Dmaic: Focused Improvement Nestlé Continuous Excellence
21 pages
Clinical Graphs Using SAS
From Everand
Clinical Graphs Using SAS
Sanjay Matange
No ratings yet
Chain of Custody Policy
No ratings yet
Chain of Custody Policy
7 pages
Bluevine Tutorials
100% (6)
Bluevine Tutorials
8 pages
User Guide For Permits 124234234
No ratings yet
User Guide For Permits 124234234
46 pages
Payshield 10K: The Hardware Security Module That Secures The World'S Payments
No ratings yet
Payshield 10K: The Hardware Security Module That Secures The World'S Payments
2 pages
Axminster EX-21 Scroll Saw Manual
No ratings yet
Axminster EX-21 Scroll Saw Manual
36 pages
sp800 171r2 To r3 Analysis
No ratings yet
sp800 171r2 To r3 Analysis
70 pages
NIST 800 171
No ratings yet
NIST 800 171
80 pages
Nist HB 162 Meps
No ratings yet
Nist HB 162 Meps
170 pages
CSD_The Ultimate Guide to NIST SP 800-171 Standard for CUI Protection 1
No ratings yet
CSD_The Ultimate Guide to NIST SP 800-171 Standard for CUI Protection 1
2 pages
Top 25 Compliances Standards and Frameworks 1728418673
No ratings yet
Top 25 Compliances Standards and Frameworks 1728418673
28 pages
Understanding Framework by SabirRaza
No ratings yet
Understanding Framework by SabirRaza
7 pages
sp800 171r2 To r3 Ipd Analysis
No ratings yet
sp800 171r2 To r3 Ipd Analysis
16 pages
27001-2013 To Cybersecurity Framework-1.0
No ratings yet
27001-2013 To Cybersecurity Framework-1.0
29 pages
Nist 800-171
No ratings yet
Nist 800-171
34 pages
S O P (SOP) : Tandardized Perating Rocedures
100% (1)
S O P (SOP) : Tandardized Perating Rocedures
30 pages
NIST.SP.800-172A
No ratings yet
NIST.SP.800-172A
62 pages
CIS_Controls_v8_Mapping_to_800_171_Rev_2_5_24_2021
No ratings yet
CIS_Controls_v8_Mapping_to_800_171_Rev_2_5_24_2021
81 pages
CIS_Controls_v8.1_Mapping_to_800_171_Rev2_7_2024__1_
No ratings yet
CIS_Controls_v8.1_Mapping_to_800_171_Rev2_7_2024__1_
104 pages
CIS Controls v8.1 Mapping To ISO - IEC 27001.2022 6 2024 07 15
No ratings yet
CIS Controls v8.1 Mapping To ISO - IEC 27001.2022 6 2024 07 15
105 pages
Evidence Gathering
No ratings yet
Evidence Gathering
42 pages
Critical Controls Poster 2016
No ratings yet
Critical Controls Poster 2016
2 pages
CUI SSP Template Final
No ratings yet
CUI SSP Template Final
20 pages
Sp800 171A Assessment Procedures
No ratings yet
Sp800 171A Assessment Procedures
137 pages
Assessment Frameworks Methodologies
No ratings yet
Assessment Frameworks Methodologies
31 pages
Compiled by Mark E.S. Bernard, ISO 27001 Lead Auditor, CISSP, CISM, SABSA-F2, CISA, CRISC, CGEIT
No ratings yet
Compiled by Mark E.S. Bernard, ISO 27001 Lead Auditor, CISSP, CISM, SABSA-F2, CISA, CRISC, CGEIT
52 pages
Example Information Security Plan ISP
No ratings yet
Example Information Security Plan ISP
30 pages
CIS Controls v8.1 Mapping To NIST CSF v2.0 6 24 2024 Final 1
No ratings yet
CIS Controls v8.1 Mapping To NIST CSF v2.0 6 24 2024 Final 1
117 pages
Cybersecurity Framework vPA 092813
No ratings yet
Cybersecurity Framework vPA 092813
299 pages
1745986834531
No ratings yet
1745986834531
106 pages
Nist SP 800-171 Physical Protection Section 3.10
No ratings yet
Nist SP 800-171 Physical Protection Section 3.10
2 pages
Nist SP 800-172
No ratings yet
Nist SP 800-172
84 pages
Seguimiento Cierre de Brechas CCF - NIST 800-53
No ratings yet
Seguimiento Cierre de Brechas CCF - NIST 800-53
84 pages
NIST.SP.800-171Ar3
No ratings yet
NIST.SP.800-171Ar3
123 pages
Information Security Planning
No ratings yet
Information Security Planning
8 pages
CIS Controls v8 Mapping To 800 171 Rev 2 2 2023
No ratings yet
CIS Controls v8 Mapping To 800 171 Rev 2 2 2023
96 pages
CIS Controls v8 Mapping To PCI v3.2.1 Final 08-19-2021
100% (1)
CIS Controls v8 Mapping To PCI v3.2.1 Final 08-19-2021
113 pages
CIS Controls v8 Mapping To SOC2 Final 08-19-2021
No ratings yet
CIS Controls v8 Mapping To SOC2 Final 08-19-2021
105 pages
Session 03
No ratings yet
Session 03
9 pages
CIS Controls v8 NEW MAPPING To ISO - IEC 27001.2022 2 2023
No ratings yet
CIS Controls v8 NEW MAPPING To ISO - IEC 27001.2022 2 2023
109 pages
NIST.SP.800-171A
No ratings yet
NIST.SP.800-171A
93 pages
Official Glossary - ISC 2 CC Preparation
No ratings yet
Official Glossary - ISC 2 CC Preparation
12 pages
NIST SP 800-171r1
No ratings yet
NIST SP 800-171r1
125 pages
CIS Controls v7.1 Mapping PCI DSS V1.0.a
No ratings yet
CIS Controls v7.1 Mapping PCI DSS V1.0.a
126 pages
NIST Cybersecurity Framework
100% (1)
NIST Cybersecurity Framework
9 pages
Nist SP 800-171 PDF
100% (1)
Nist SP 800-171 PDF
76 pages
Security Policies Les 6 Frameworks en Standaardisatie Thomas More
No ratings yet
Security Policies Les 6 Frameworks en Standaardisatie Thomas More
38 pages
CIS Controls v8 Mapping To UK NCSC Cyber Assessment Framework v3.1 - 8-16-2022
No ratings yet
CIS Controls v8 Mapping To UK NCSC Cyber Assessment Framework v3.1 - 8-16-2022
115 pages
PCI DSS v3.2 Vs CIS Critical Security Controls v6.0 v160729
No ratings yet
PCI DSS v3.2 Vs CIS Critical Security Controls v6.0 v160729
111 pages
CIS-Controls-v8--Mapping-to-PCI-DSS-v40
No ratings yet
CIS-Controls-v8--Mapping-to-PCI-DSS-v40
151 pages
Network Security Monitoring Procedure
100% (1)
Network Security Monitoring Procedure
3 pages
CIS Controls v8 Mapping To ISO - IEC 27002.2022 2022 0406
100% (3)
CIS Controls v8 Mapping To ISO - IEC 27002.2022 2022 0406
121 pages
CIS_Controls_v8_Mapping_to_CSF_2.0__February_2024_
No ratings yet
CIS_Controls_v8_Mapping_to_CSF_2.0__February_2024_
100 pages
Computer Security and Control
No ratings yet
Computer Security and Control
11 pages
CH01 CompSec2e
No ratings yet
CH01 CompSec2e
32 pages
CIS Controls v8 Mapping To NIST CSF FINAL 06 11 2021
No ratings yet
CIS Controls v8 Mapping To NIST CSF FINAL 06 11 2021
111 pages
sp800 171 Second Draft PDF
No ratings yet
sp800 171 Second Draft PDF
78 pages
Wazuh PCI DSS Guide PDF
100% (1)
Wazuh PCI DSS Guide PDF
49 pages
4 Operations Security
No ratings yet
4 Operations Security
69 pages
CIS_Controls_v8_Mapping_to_PCI_DSS_v4.0_9_2023
No ratings yet
CIS_Controls_v8_Mapping_to_PCI_DSS_v4.0_9_2023
168 pages
CIS RAM v2.1 For IG1 Workbook.22.05
No ratings yet
CIS RAM v2.1 For IG1 Workbook.22.05
174 pages
NS- Unit 1
No ratings yet
NS- Unit 1
7 pages
NIST Checklist
No ratings yet
NIST Checklist
92 pages
NIST Cybersecurity Framework (CSF) For Information Systems Security: NIST Cybersecurity Framework (CSF), #1
From Everand
NIST Cybersecurity Framework (CSF) For Information Systems Security: NIST Cybersecurity Framework (CSF), #1
Bruce Brown, CISSP
No ratings yet
Digital - Ezra Firestone - Google Search
No ratings yet
Digital - Ezra Firestone - Google Search
2 pages
10 Reasons Why Companies Use Staffing Agencies - Apollo Technical
No ratings yet
10 Reasons Why Companies Use Staffing Agencies - Apollo Technical
10 pages
Executive Search & Recruiting Firm - Sagency
No ratings yet
Executive Search & Recruiting Firm - Sagency
13 pages
Efficient Decision Support Systems Pract
No ratings yet
Efficient Decision Support Systems Pract
471 pages
Line 9 Bottle Quality DMAIC
No ratings yet
Line 9 Bottle Quality DMAIC
44 pages
Adaptive Decision Support Systems: Fazlollahi, Parikh, Verma/ 1
No ratings yet
Adaptive Decision Support Systems: Fazlollahi, Parikh, Verma/ 1
49 pages
Nestlé Continuous Excellence: Goal Alignment
100% (1)
Nestlé Continuous Excellence: Goal Alignment
38 pages
Efine Mprove Nalyse: Project/Problem
100% (1)
Efine Mprove Nalyse: Project/Problem
4 pages
Strategic Planning Process
No ratings yet
Strategic Planning Process
9 pages
Incident Log - Template
No ratings yet
Incident Log - Template
10 pages
Billing Policy: Last Updated: DCN
No ratings yet
Billing Policy: Last Updated: DCN
22 pages
On-Premise SQL Server To Azure SQL Data Warehouse, Using Data Platform Studio. (PDFDrive)
No ratings yet
On-Premise SQL Server To Azure SQL Data Warehouse, Using Data Platform Studio. (PDFDrive)
22 pages
Subcontracting Process
100% (1)
Subcontracting Process
11 pages
VMD Corp IMS Policies Poster
No ratings yet
VMD Corp IMS Policies Poster
1 page
Montgomery Co Urgent Care Testing Covid
No ratings yet
Montgomery Co Urgent Care Testing Covid
5 pages
Parallel Optimization Theory Algorithms
No ratings yet
Parallel Optimization Theory Algorithms
21 pages
Supplier Evaluation Process
No ratings yet
Supplier Evaluation Process
9 pages
Employee Handbook
No ratings yet
Employee Handbook
77 pages
Procurement Policy
No ratings yet
Procurement Policy
30 pages
VMD Operations Process
No ratings yet
VMD Operations Process
9 pages
Curriculum Guide: Artificial Intelligence and Machine Learning: Business Applications
No ratings yet
Curriculum Guide: Artificial Intelligence and Machine Learning: Business Applications
8 pages
PQA Audit Template - Projects
No ratings yet
PQA Audit Template - Projects
39 pages
Employee Referral Program Slick Sheet
No ratings yet
Employee Referral Program Slick Sheet
1 page
Vijay Kumar
No ratings yet
Vijay Kumar
4 pages
NetworkMiner Network Forensics Analysis Tool(1)
No ratings yet
NetworkMiner Network Forensics Analysis Tool(1)
10 pages
6019e43dcfad3c13a3417e59 - Lear-77-Production Trial Run Form
100% (1)
6019e43dcfad3c13a3417e59 - Lear-77-Production Trial Run Form
2 pages
REPORT
No ratings yet
REPORT
3 pages
FDP NKN Summer 2019
No ratings yet
FDP NKN Summer 2019
15 pages
Wsc2017 Wsss10 Welding
No ratings yet
Wsc2017 Wsss10 Welding
6 pages
(IJCST-V5I6P3) :ms. Guddeti Divya Rani, A.Ravi
No ratings yet
(IJCST-V5I6P3) :ms. Guddeti Divya Rani, A.Ravi
8 pages
Proposal For Jewelry E-Commers
No ratings yet
Proposal For Jewelry E-Commers
3 pages
Comm 1020 Informative Speech Final Draft
No ratings yet
Comm 1020 Informative Speech Final Draft
3 pages
certscare-asis-physical-security-professional-exam-dumps-by-herman-20-10-2022-9qa
No ratings yet
certscare-asis-physical-security-professional-exam-dumps-by-herman-20-10-2022-9qa
6 pages
James Barracato & Steve Kleinman On MSV
No ratings yet
James Barracato & Steve Kleinman On MSV
3 pages
ISO 8583 Data Elements Complete
No ratings yet
ISO 8583 Data Elements Complete
5 pages
RHEL 6/CentOS 6 PCI Hardening Guide
100% (1)
RHEL 6/CentOS 6 PCI Hardening Guide
4 pages
Hiranshi Sahu
No ratings yet
Hiranshi Sahu
1 page
Continuous Diagnostics and Mitigation Program: How CDM Works
No ratings yet
Continuous Diagnostics and Mitigation Program: How CDM Works
2 pages
Palm Vein Biometrics
No ratings yet
Palm Vein Biometrics
39 pages
ijrehc05_14
No ratings yet
ijrehc05_14
11 pages
Confidential Tech
No ratings yet
Confidential Tech
52 pages
Cisco 3845 Series Integrated Services Router IOS Relase 12.4 (6) MR
No ratings yet
Cisco 3845 Series Integrated Services Router IOS Relase 12.4 (6) MR
10 pages
E22-900T30D UserManual EN v1.2
No ratings yet
E22-900T30D UserManual EN v1.2
25 pages
Security Incident Register
No ratings yet
Security Incident Register
12 pages
Police Verification Janranjani-5A-A-309
No ratings yet
Police Verification Janranjani-5A-A-309
1 page
SAMIR CV
No ratings yet
SAMIR CV
1 page
Marriot
No ratings yet
Marriot
3 pages
BRKSEC-3007 - Advanced Cisco IOS Security Features (2010 Las Vegas)
100% (1)
BRKSEC-3007 - Advanced Cisco IOS Security Features (2010 Las Vegas)
123 pages