Overall, the Special Publication 800-series reports on ITL’s research, guidelines, and outreach efforts in information system security, and its collaborative activities with industry, government, and academic organizations.
NIST 800-137 covers Information Security Continuous Monitoring (ISCM) for Federal Information
Systems and Organizations and includes the following steps to establish, implement, and maintain ISCM:
- Define an ISCM strategy;
- Establish an ISCM program;
- Implement an ISCM program;
- Analyze data and Report findings;
- Respond to findings; and
- Review and Update the ISCM strategy and program.
No comments:
Post a Comment