Navigate

CCI-003282

CCI-003282 Definition

Require the developer of the system, system component, or system service to use vulnerability analysis from similar systems, components, or services to inform the current development process.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

Validation Procedures

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-003282.

Control	Description
SA-15(8)	The organization requires the developer of the information system, system component, or information system service to use threat modeling and vulnerability analyses from similar systems, components, or services to inform the current development process.