💼 CM-7 (1) PERIODIC REVIEW

ID: /frameworks/nist-sp-800-53-r4/cm/07/01

Description

The organization: CM-7 (1)(a) Reviews the information system [Assignment: organization-defined frequency] to identify unnecessary and/or nonsecure functions, ports, protocols, and services; and CM-7 (1)(b) Disables [Assignment: organization-defined functions, ports, protocols, and services within the information system deemed to be unnecessary and/or nonsecure].

Similar

Internal
- ID: dec-c-394a8cde

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Policies (4)

Policy	Logic Count	Flags	Compliance
🛡️ AWS EC2 Security Group allows public IPv4 (0.0.0.0/0) access to admin ports🟢	1	🟢 x6	no data
🛡️ AWS EC2 Security Group allows public IPv6 (::/0) access to admin ports🟢	1	🟢 x6	no data
🛡️ AWS S3 Bucket is not configured to block public access🟢	1	🟢 x6	no data
🛡️ AWS S3 Bucket Policy is not set to deny HTTP requests🟢	1	🟢 x6	no data

Internal Rules

Rule	Policies	Flags
✉️ dec-x-bcae85fb	2
✉️ dec-x-d5fbfc40	1
✉️ dec-x-ec547a7c	1

Description​

Similar​

Sub Sections​

Policies (4)​

Internal Rules​

Description

Similar

Sub Sections

Policies (4)

Internal Rules