💼 SC-7(20) Dynamic Isolation and Segregation (H)
- ID:
/frameworks/fedramp-high-security-controls/sc/07/20
Description
Provide the capability to dynamically isolate [Assignment: organization-defined system components] from other system components.
Similar
- Sections
/frameworks/nist-sp-800-53-r5/sc/07/20
- Internal
- ID:
dec-c-dce54321
- ID:
Similar Sections (Take Policies From)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 NIST SP 800-53 Revision 5 → 💼 SC-7(20) Boundary Protection _ Dynamic Isolation and Segregation | 8 | no data |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|
Policies (8)
| Policy | Logic Count | Flags | Compliance |
|---|---|---|---|
| 🛡️ AWS DMS Replication Instance is publicly accessible🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS EBS Snapshot is publicly accessible🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS EC2 Auto Scaling Group behind ELB assigns public IP to instances🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS EC2 Instance with an auto-assigned public IP address is in a default subnet🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS RDS Snapshot is publicly accessible🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS S3 Bucket is not configured to block public access🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS VPC is not configured with a VPC Endpoint for Amazon EC2 service🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS VPC Subnet Map Public IP On Launch is enabled🟢 | 1 | 🟢 x6 | no data |