Navigate

CM-11(3)

CM-11(3): Automated Enforcement and Monitoring

Enforce and monitor compliance with software installation policies using [one of ].

Supplemental

Organizations enforce and monitor compliance with software installation policies using automated mechanisms to more quickly detect and respond to unauthorized software installation which can be an indicator of an internal or external hostile attack.

CIA Levels
Confidentiality	unknown
Integrity	unknown
Availability	unknown

Overlays
CDS - Access, CDS - Multilevel, CDS - Transfer, DAF Baseline

CSF Categories
None

Related Controls

The controls below (if any) were marked by NIST as being related to CM-11(3).

Control	Description
No controls

Enhancements

The controls below (if any) add on to the requirements of CM-11(3).

Control	Description
No controls

Related CCIs

The CCIs below are tied to CM-11(3).

CCI	Definition
CCI-003981	Enforce and monitor compliance with software installation policies using organization-defined automated mechanisms.