Skip to main content

πŸ’Ό CM-11 USER-INSTALLED SOFTWARE

  • Contextual name: πŸ’Ό CM-11 USER-INSTALLED SOFTWARE
  • ID: /frameworks/nist-sp-800-53-r4/cm/11
  • Located in: πŸ’Ό CM CONFIGURATION MANAGEMENT

Description​

The organization: CM-11a. Establishes [Assignment: organization-defined policies] governing the installation of software by users; CM-11b. Enforces software installation policies through [Assignment: organization-defined methods]; and CM-11c. Monitors policy compliance at [Assignment: organization-defined frequency].

Similar​

  • Internal
    • ID: dec-c-793a128b

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό NIST CSF v1.1 β†’ πŸ’Ό DE.CM-3: Personnel activity is monitored to detect potential cybersecurity events2124

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό CM-11 (1) ALERTS FOR UNAUTHORIZED INSTALLATIONS
πŸ’Ό CM-11 (2) PROHIBIT INSTALLATION WITHOUT PRIVILEGED STATUS