πΌ PR.IP-3: Configuration change control processes are in place
- Contextual name: πΌ PR.IP-3: Configuration change control processes are in place
- ID:
/frameworks/nist-csf-v1.1/pr-ip/03 - Located in: πΌ Information Protection Processes and Procedures (PR.IP)
Descriptionβ
Empty...
Similarβ
- Sections
/frameworks/iso-iec-27001-2013/12/01/02/frameworks/iso-iec-27001-2013/12/05/01/frameworks/iso-iec-27001-2013/12/06/02/frameworks/iso-iec-27001-2013/14/02/02/frameworks/iso-iec-27001-2013/14/02/03/frameworks/iso-iec-27001-2013/14/02/04/frameworks/nist-sp-800-53-r4/cm/03/frameworks/nist-sp-800-53-r4/cm/04/frameworks/nist-sp-800-53-r4/sa/10
- Internal
- ID:
dec-c-f6cd354d
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ ISO/IEC 27001:2013 β πΌ A.12.1.2 Change management | ||||
| πΌ ISO/IEC 27001:2013 β πΌ A.12.5.1 Installation of software on operational systems | 4 | 4 | ||
| πΌ ISO/IEC 27001:2013 β πΌ A.12.6.2 Restrictions on software installation | ||||
| πΌ ISO/IEC 27001:2013 β πΌ A.14.2.2 System change control procedures | ||||
| πΌ ISO/IEC 27001:2013 β πΌ A.14.2.3 Technical review of applications after operating platform changes | ||||
| πΌ ISO/IEC 27001:2013 β πΌ A.14.2.4 Restrictions on changes to software packages | ||||
| πΌ NIST SP 800-53 Revision 4 β πΌ CM-3 CONFIGURATION CHANGE CONTROL | 6 | |||
| πΌ NIST SP 800-53 Revision 4 β πΌ CM-4 SECURITY IMPACT ANALYSIS | 2 | |||
| πΌ NIST SP 800-53 Revision 4 β πΌ SA-10 DEVELOPER CONFIGURATION MANAGEMENT | 6 |
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST CSF v2.0 β πΌ ID.RA-07: Changes and exceptions are managed, assessed for risk impact, recorded, and tracked | 24 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (4)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS RDS Instance Auto Minor Version Upgrade is not enabled π π’ | 1 | π x1, π’ x6 |
| π Azure App Service does not run the latest Java version π’ | π’ x3 | |
| π Azure App Service does not run the latest PHP version π’ | π’ x3 | |
| π Azure App Service does not run the latest Python version π’ | π’ x3 |
Internal Rulesβ
| Rule | Policies | Flags |
|---|---|---|
| βοΈ dec-x-879aa996 | 1 | |
| βοΈ dec-x-215302da | 1 | |
| βοΈ dec-x-a20e54a0 | 1 | |
| βοΈ dec-x-f82b9849 | 1 |