💼 MA-4 NONLOCAL MAINTENANCE
- ID:
/frameworks/nist-sp-800-53-r4/ma/04
Description​
The organization: MA-4a. Approves and monitors nonlocal maintenance and diagnostic activities; MA-4b. Allows the use of nonlocal maintenance and diagnostic tools only as consistent with organizational policy and documented in the security plan for the information system; MA-4c. Employs strong authenticators in the establishment of nonlocal maintenance and diagnostic sessions; MA-4d. Maintains records for nonlocal maintenance and diagnostic activities; and MA-4e. Terminates session and network connections when nonlocal maintenance is completed.
Similar​
- Internal
- ID:
dec-c-001b24c7
- ID:
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 NIST CSF v1.1 → 💼 PR.MA-2: Remote maintenance of organizational assets is approved, logged, and performed in a manner that prevents unauthorized access | 1 | 1 | no data |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 MA-4 (1) AUDITING AND REVIEW | no data | ||||
| 💼 MA-4 (2) DOCUMENT NONLOCAL MAINTENANCE | no data | ||||
| 💼 MA-4 (3) COMPARABLE SECURITY _ SANITIZATION | no data | ||||
| 💼 MA-4 (4) AUTHENTICATION _ SEPARATION OF MAINTENANCE SESSIONS | no data | ||||
| 💼 MA-4 (5) APPROVALS AND NOTIFICATIONS | no data | ||||
| 💼 MA-4 (6) CRYPTOGRAPHIC PROTECTION | no data | ||||
| 💼 MA-4 (7) REMOTE DISCONNECT VERIFICATION | no data |