FIPS 199 High Impact (for ICS) |
| Findings
Color Code |
| Satisfied |
| Other Than Satisfied - not assessed |
| Other Than Satisfied - failed
|
|
|
NIST SP 800-53A CM-07(01) .01(i)
|
Question: Does the security plan explicitly define the frequency of the information system reviews to identify and eliminate unnecessary functions, ports, protocols, and services ? |
|
Answered by: BOSTON::HARRISON
As part of Manual Examination group: POLICY_CM
|
Answer: YES
|
|
|
This NIST 800-53 report is posted on the Internet to promote Version 3.0 of LJK/Security . The corresponding vulnerability report for your own system should be guarded more carefully, such as by being reviewed only from local HTML disk files rather than via a web server.
|