CCI-001777

CCI-001777 Definition

Review and update the list of authorized software programs per organization-defined frequency.

Status
Type	CheckType.policy

The controls below (if any) were marked by NIST as being related to CCI-001777.

Control	Description
CM-7(5)	The organization: (a): Identifies [one of ]; (b): Employs a deny-all, permit-by-exception policy to allow the execution of authorized software programs on the information system; and (c): Reviews and updates the list of authorized software programs [one of ].