💼 SI-2 Flaw Remediation (L)(M)(H)

ID: /frameworks/fedramp-high-security-controls/si/02

Description

a. Identify, report, and correct system flaws;

b. Test software and firmware updates related to flaw remediation for effectiveness and potential side effects before installation;

c. Install security-relevant software and firmware updates within [FedRAMP Assignment: within thirty (30) days of release of updates] of the release of the updates; and

d. Incorporate flaw remediation into the organizational configuration management process.

Similar

Sections
- /frameworks/nist-sp-800-53-r5/si/02
Internal
- ID: dec-c-3bf195ac

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 NIST SP 800-53 Revision 5 → 💼 SI-2 Flaw Remediation	6	6	11		no data

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 FedRAMP Low Security Controls → 💼 SI-2 Flaw Remediation (L)(M)(H)			14		no data
💼 FedRAMP Moderate Security Controls → 💼 SI-2 Flaw Remediation (L)(M)(H)	2		14		no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 SI-2(2) Automated Flaw Remediation Status (M)(H)			4		no data
💼 SI-2(3) Time to Remediate Flaws and Benchmarks for Corrective Actions (M)(H)					no data

Policies (14)

Policy	Logic Count	Flags	Compliance
🛡️ AWS CloudWatch Metric Alarm does not have any actions configured🟢	1	🟢 x6	no data
🛡️ AWS DMS Replication Instance Auto Minor Version Upgrade is not enabled🟢	1	🟢 x6	no data
🛡️ AWS EC2 Auto Scaling Group behind ELB doesn't use ELB health check🟢	1	🟢 x6	no data
🛡️ AWS Elastic Beanstalk Environment does not have enhanced health reporting enabled🟢	1	🟢 x6	no data
🛡️ AWS ElastiCache Redis Cluster Auto Minor Version Upgrade is not enabled🟢	1	🟢 x6	no data
🛡️ AWS RDS Instance Auto Minor Version Upgrade is not enabled🟠🟢	1	🟠 x1, 🟢 x6	no data
🛡️ AWS RDS Multi-AZ Cluster Auto Minor Version Upgrade is not enabled🟢	1	🟢 x6	no data
🛡️ Azure Subscription Microsoft Defender For (Managed Instance) Azure SQL Databases is not set to On🟢	1	🟢 x6	no data
🛡️ Azure Subscription Microsoft Defender For App Services is not set to On🟢	1	🟢 x6	no data
🛡️ Azure Subscription Microsoft Defender For Containers is not set to On🟢	1	🟢 x6	no data
🛡️ Azure Subscription Microsoft Defender For Key Vault is not set to On🟢	1	🟢 x6	no data
🛡️ Azure Subscription Microsoft Defender For Servers is not set to On🟢	1	🟢 x6	no data
🛡️ Azure Subscription Microsoft Defender For SQL Servers On Machines is not set to On🟢	1	🟢 x6	no data
🛡️ Azure Subscription Microsoft Defender For Storage is not set to On🟢	1	🟢 x6	no data

Internal Rules

Rule	Policies	Flags
✉️ dec-x-1a2f6279	1
✉️ dec-x-9f7d853f	1
✉️ dec-x-52ac4ac0	1
✉️ dec-x-8535d1ff	1
✉️ dec-x-a00b4ec9	1
✉️ dec-x-a0471977	1
✉️ dec-x-fafadacd	1

Description​

Similar​

Similar Sections (Take Policies From)​

Similar Sections (Give Policies To)​

Sub Sections​

Policies (14)​

Internal Rules​