Skip to main content

💼 SC-7(20) Dynamic Isolation and Segregation (H)

Contextual name: 💼 SC-7(20) Dynamic Isolation and Segregation (H)
ID: /frameworks/fedramp-high-security-controls/sc/07/20
Located in: 💼 SC-7 Boundary Protection (L)(M)(H)

Description

Provide the capability to dynamically isolate [Assignment: organization-defined system components] from other system components.

Similar

Sections
- /frameworks/nist-sp-800-53-r5/sc/07/20
Internal
- ID: dec-c-dce54321

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 NIST SP 800-53 Revision 5 → 💼 SC-7(20) Boundary Protection _ Dynamic Isolation and Segregation			8

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags

Policies (8)

Policy	Logic Count	Flags
📝 AWS DMS Replication Instance is publicly accessible 🟢	1	🟢 x6
📝 AWS EBS Snapshot is publicly accessible 🟢	1	🟢 x6
📝 AWS EC2 Auto Scaling Group behind ELB assigns public IP to instances 🟢	1	🟢 x6
📝 AWS EC2 Instance with an auto-assigned public IP address is in a default subnet 🟢	1	🟢 x6
📝 AWS RDS Snapshot is publicly accessible 🟢	1	🟢 x6
📝 AWS S3 Bucket is not configured to block public access 🟢	1	🟢 x6
📝 AWS VPC is not configured with a VPC Endpoint for Amazon EC2 service 🟢	1	🟢 x6
📝 AWS VPC Subnet Map Public IP On Launch is enabled 🟢	1	🟢 x6

Description
Similar
Similar Sections (Take Policies From)
Sub Sections
Policies (8)