Interview SI_05_1_IV

This NIST 800-53 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.
Return to Main Page
Interview SI_05_1_IV_46

FIPS 199 High Impact (for ICS)

Findings Color Code
Satisfied
Other Than Satisfied - not assessed
Other Than Satisfied - failed

NIST SP 800-53A SI-05 .01(iv)

Question: In interviewing 33 percent (but no fewer than 2) of the System Management Staff members, do they all feel the organization maintains contact with special interest groups (e.g., information security forums) that: (a) facilitate sharing of security-related information (e.g., threats, vulnerabilities, and latest security technologies), (b) provide access to advice from security professionals, and (c) improve knowledge of security best practices ?

Answered by: BOSTON::HARDING

As part of Interview group: SYSSTAFF_SI

Answer: YES

This NIST 800-53 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.