CCI-001229
CCI-001229 Definition
Test software updates related to flaw remediation for potential side effects before installation.
Status | |
Type | CheckType.policy |
Master Assessment Datasheet
Implementation Guidance
The organization being inspected/assessed documents and implements a process for regression testing IAW CM-4 to identify any potential side effects before installation of software updates.
Validation Procedures
The organization conducting the inspection/assessment obtains and examines the documented process and test results to ensure the organization being inspected/assessed tests software updates related to flaw remediation for potential side effects before installation.
Compelling Evidence
1.) Signed and dated System security plan. 2.) Continuous monitoring plan. 3.) Reference to system security plan and continuous monitoring plan sections pertaining to the process for testing software updates. 4.) Signed and dated testing process logs.