An error occurred:
Close sidebar
Xylok
Home Menu
[email protected]
© 2024
Xylok, LLC
Version: v2024.04.1-c0c9-98fb
Xylok
Home Menu
[email protected]
© 2024
Xylok, LLC
Version: v2024.04.1-c0c9-98fb
Open sidebar
Navigate
Top
Description
MAD
Related
CCI-001778
CCI-001778
Definition
The organization updates the list of authorized software programs per organization-defined frequency.
Status
Type
CheckType.policy
Master Assessment Datasheet
Implementation Guidance
Validation Procedures
Compelling Evidence
Related Controls
The controls below (if any) were marked by NIST as being related to
CCI-001778
.
Control
Description
CM-7 (5)
The organization:
CM-7 (5)(a): Identifies [Assignment: organization-defined software programs authorized to execute on the information system];
CM-7 (5)(b): Employs a deny-all, permit-by-exception policy to allow the execution of authorized software programs on the information system; and
CM-7 (5)(c): Reviews and updates the list of authorized software programs [Assignment: organization-defined frequency].