๐ผ Assessment, Authorization, and Monitoring
- Contextual name: ๐ผ Assessment, Authorization, and Monitoring
- ID:
/frameworks/fedramp-high-security-controls/ca - Located in: ๐ผ FedRAMP High Security Controls
Descriptionโ
Empty...
Similarโ
- Internal
- ID:
dec-b-92a3b16f
- ID:
Sub Sectionsโ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| ๐ผ CA-1 Policy and Procedures (L)(M)(H) | ||||
| ๐ผ CA-2 Control Assessments (L)(M)(H) | 3 | |||
| ย ย ย ย ๐ผ CA-2(1) Independent Assessors (L)(M)(H) | ||||
| ย ย ย ย ๐ผ CA-2(2) Specialized Assessments (H) | ||||
| ย ย ย ย ๐ผ CA-2(3) Leveraging Results from External Organizations (M)(H) | ||||
| ๐ผ CA-3 Information Exchange (L)(M)(H) | 1 | |||
| ย ย ย ย ๐ผ CA-3(6) Transfer Authorizations (H) | ||||
| ๐ผ CA-5 Plan of Action and Milestones (L)(M)(H) | ||||
| ๐ผ CA-6 Authorization (L)(M)(H) | ||||
| ๐ผ CA-7 Continuous Monitoring (L)(M)(H) | 2 | 8 | ||
| ย ย ย ย ๐ผ CA-7(1) Independent Assessment (M)(H) | ||||
| ย ย ย ย ๐ผ CA-7(4) Risk Monitoring (L)(M)(H) | ||||
| ๐ผ CA-8 Penetration Testing (L)(M)(H) | 2 | |||
| ย ย ย ย ๐ผ CA-8(1) Independent Penetration Testing Agent or Team (M)(H) | ||||
| ย ย ย ย ๐ผ CA-8(2) Red Team Exercises (M)(H) | ||||
| ๐ผ CA-9 Internal System Connections (L)(M)(H) |