Skip to main content

πŸ’Ό PR.IP-2: A System Development Life Cycle to manage systems is implemented

Description​

Empty...

Similar​

  • Sections
    • /frameworks/iso-iec-27001-2013/06/01/05
    • /frameworks/iso-iec-27001-2013/14/01/01
    • /frameworks/iso-iec-27001-2013/14/02/01
    • /frameworks/iso-iec-27001-2013/14/02/05
    • /frameworks/nist-sp-800-53-r4/pl/08
    • /frameworks/nist-sp-800-53-r4/sa/03
    • /frameworks/nist-sp-800-53-r4/sa/04
    • /frameworks/nist-sp-800-53-r4/sa/08
    • /frameworks/nist-sp-800-53-r4/sa/10
    • /frameworks/nist-sp-800-53-r4/sa/11
    • /frameworks/nist-sp-800-53-r4/sa/12
    • /frameworks/nist-sp-800-53-r4/sa/15
    • /frameworks/nist-sp-800-53-r4/sa/17
    • /frameworks/nist-sp-800-53-r4/si/12
    • /frameworks/nist-sp-800-53-r4/si/13
    • /frameworks/nist-sp-800-53-r4/si/14
    • /frameworks/nist-sp-800-53-r4/si/16
    • /frameworks/nist-sp-800-53-r4/si/17
  • Internal
    • ID: dec-c-aad19683

Similar Sections (Take Policies From)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό ISO/IEC 27001:2013 β†’ πŸ’Ό A.6.1.5 Information security in project management
πŸ’Ό ISO/IEC 27001:2013 β†’ πŸ’Ό A.14.1.1 Information security requirements analysis and specification66
πŸ’Ό ISO/IEC 27001:2013 β†’ πŸ’Ό A.14.2.1 Secure development policy
πŸ’Ό ISO/IEC 27001:2013 β†’ πŸ’Ό A.14.2.5 Secure system engineering principles
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό PL-8 INFORMATION SECURITY ARCHITECTURE2
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SA-3 SYSTEM DEVELOPMENT LIFE CYCLE
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SA-4 ACQUISITION PROCESS10
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SA-8 SECURITY ENGINEERING PRINCIPLES
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SA-10 DEVELOPER CONFIGURATION MANAGEMENT6
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SA-11 DEVELOPER SECURITY TESTING AND EVALUATION8
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SA-12 SUPPLY CHAIN PROTECTION15
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SA-15 DEVELOPMENT PROCESS, STANDARDS, AND TOOLS11
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SA-17 DEVELOPER SECURITY ARCHITECTURE AND DESIGN7
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SI-12 INFORMATION HANDLING AND RETENTION
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SI-13 PREDICTABLE FAILURE PREVENTION5
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SI-14 NON-PERSISTENCE1
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SI-16 MEMORY PROTECTION
πŸ’Ό NIST SP 800-53 Revision 4 β†’ πŸ’Ό SI-17 FAIL-SAFE PROCEDURES

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags

Policies (6)​

PolicyLogic CountFlags
πŸ“ Azure PostgreSQL Flexible Server log_checkpoints Parameter is not set to ON 🟒1🟒 x6
πŸ“ Azure PostgreSQL Flexible Server log_retention_days Parameter is less than 4 days 🟒1🟒 x6
πŸ“ Azure PostgreSQL Single Server log_connections Parameter is not set to ON 🟒1🟒 x6
πŸ“ Azure PostgreSQL Single Server log_disconnections Parameter is not set to ON 🟒1🟒 x6
πŸ“ Azure SQL Server Auditing Retention is less than 90 days 🟒1🟒 x6
πŸ“ Azure Virtual Machine is not utilizing Managed Disks 🟒1🟒 x6

Internal Rules​

RulePoliciesFlags
βœ‰οΈ dec-x-0c82d7751
βœ‰οΈ dec-x-9b79d91f1
βœ‰οΈ dec-x-24bba4831
βœ‰οΈ dec-x-89d5ed7a1
βœ‰οΈ dec-x-588af79c1
βœ‰οΈ dec-x-1518c16e1