800-53|CA-7

Title

CONTINUOUS MONITORING

Description

The organization develops a continuous monitoring strategy and implements a continuous monitoring program that includes:

Supplemental

Continuous monitoring programs facilitate ongoing awareness of threats, vulnerabilities, and information security to support organizational risk management decisions. The terms continuous and ongoing imply that organizations assess/analyze security controls and information security-related risks at a frequency sufficient to support organizational risk-based decisions. The results of continuous monitoring programs generate appropriate risk response actions by organizations. Continuous monitoring programs also allow organizations to maintain the security authorizations of information systems and common controls over time in highly dynamic environments of operation with changing mission/business needs, threats, vulnerabilities, and technologies. Having access to security-related information on a continuing basis through reports/dashboards gives organizational officials the capability to make more effective and timely risk management decisions, including ongoing security authorization decisions. Automation supports more frequent updates to security authorization packages, hardware/software/firmware inventories, and other system information. Effectiveness is further enhanced when continuous monitoring outputs are formatted to provide information that is specific, measurable, actionable, relevant, and timely. Continuous monitoring activities are scaled in accordance with the security categories of information systems.

Reference Item Details

Related: CA-2,CA-5,CA-6,CM-3,CM-4,PM-6,PM-9,RA-5,SA-11,SA-12,SI-2,SI-4

Category: SECURITY ASSESSMENT AND AUTHORIZATION

Family: SECURITY ASSESSMENT AND AUTHORIZATION

Priority: P2

Baseline Impact: LOW,MODERATE,HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.10 Using Local RBAC to Limit User Access to ShellArubaOSCIS HPE Aruba Networking CX Switch v1.0.1 Optional Security Recommendations
1.2.2 SSH Allow ListArubaOSCIS HPE Aruba Networking CX Switch v1.0.1 L1
1.2.2 SSH Allow ListArubaOSCIS HPE Aruba Networking CX Switch v1.0.1 Optional Security Recommendations
1.4.1.1 Non Default Community Names, Access Rights & ACLArubaOSCIS HPE Aruba Networking CX Switch v1.0.1 Optional Security Recommendations
1.4.1.1 Non Default Community Names, Access Rights & ACLArubaOSCIS HPE Aruba Networking CX Switch v1.0.1 L1
1.12.1 Ensure 'Configure Watson events' is set to 'Disabled'WindowsCIS Microsoft Defender Antivirus v1.0.0 L2 Server
1.12.1 Ensure 'Configure Watson events' is set to 'Disabled'WindowsCIS Microsoft Defender Antivirus v1.0.0 L2 Workstation
1.30 CISC-RT-000490CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.31 CISC-RT-000500CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.32 CISC-RT-000510CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.33 CISC-RT-000520CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.34 CISC-RT-000530CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.35 CISC-RT-000540CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT III
1.36 CISC-RT-000550CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT III
1.37 CISC-RT-000560CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.38 CISC-RT-000570CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT III
1.39 CISC-RT-000580CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT III
1.40 CISC-RT-000590CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT III
1.41 CISC-RT-000600CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT III
1.42 CISC-RT-000610CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT III
1.43 CISC-RT-000620CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.44 CISC-RT-000630CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT I
1.45 CISC-RT-000640CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT I
1.46 CISC-RT-000650CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.47 CISC-RT-000660CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.48 CISC-RT-000670CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT I
1.49 CISC-RT-000680CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT I
1.50 CISC-RT-000700CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.51 CISC-RT-000710CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT III
1.52 CISC-RT-000720CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.53 CISC-RT-000730CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT I
1.54 CISC-RT-000740CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.55 CISC-RT-000750CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.67 CISC-RT-000880CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.68 CISC-RT-000890CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.70 CISC-RT-000910CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.71 CISC-RT-000920CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT III
1.72 CISC-RT-000930CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT III
1.73 CISC-RT-000940CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT III
1.74 CISC-RT-000950CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT III
1.75 CISC-RT-000236CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT III
1.76 CISC-RT-000237CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
1.77 CISC-RT-000391CiscoCIS Cisco NX OS Switch RTR STIG v1.1.0 CAT II
18.10.42.12.1 (L1) Ensure 'Configure Watson events' is set to 'Disabled'WindowsCIS Microsoft Windows 10 EMS Gateway v3.0.0 L1
18.10.42.12.1 Ensure 'Configure Watson events' is set to 'Disabled'WindowsCIS Microsoft Windows Server 2025 v2.0.0 L2 DC
18.10.42.12.1 Ensure 'Configure Watson events' is set to 'Disabled'WindowsCIS Microsoft Windows Server 2025 v2.0.0 L2 MS
18.10.42.12.1 Ensure 'Configure Watson events' is set to 'Disabled'WindowsCIS Microsoft Windows Server 2022 v5.0.0 L2 DC
18.10.42.12.1 Ensure 'Configure Watson events' is set to 'Disabled'WindowsCIS Microsoft Windows 11 Enterprise v5.0.1 L2 BL
18.10.42.12.1 Ensure 'Configure Watson events' is set to 'Disabled'WindowsCIS Microsoft Windows 11 Enterprise v5.0.1 L2
18.10.42.12.1 Ensure 'Configure Watson events' is set to 'Disabled'WindowsCIS Microsoft Windows Server 2022 v5.0.0 L2 MS