💼 6.3.1 Security vulnerabilities are identified and managed.
- ID:
/frameworks/pci-dss-v4.0.1/06/03/01
Description
As follows:
- New security vulnerabilities are identified using industry-recognized sources for security vulnerability information, including alerts from international and national computer emergency response teams (CERTs).
- Vulnerabilities are assigned a risk ranking based on industry best practices and consideration of potential impact.
- Risk rankings identify, at a minimum, all vulnerabilities considered to be a high-risk or critical to the environment.
- Vulnerabilities for bespoke and custom, and third-party software (for example operating systems and databases) are covered.
Similar
- Sections
/frameworks/pci-dss-v4.0/06/03/01/frameworks/aws-fsbp-v1.0.0/inspector/03/frameworks/aws-fsbp-v1.0.0/inspector/04
Similar Sections (Take Policies From)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [Inspector.3] Amazon Inspector Lambda code scanning should be enabled | 1 | no data | |||
| 💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [Inspector.4] Amazon Inspector Lambda standard scanning should be enabled | 1 | no data | |||
| 💼 PCI DSS v4.0 → 💼 6.3.1 Security vulnerabilities are identified and managed. | 2 | no data |
Similar Sections (Give Policies To)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 PCI DSS v4.0 → 💼 6.3.1 Security vulnerabilities are identified and managed. | 2 | no data |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|
Policies (2)
| Policy | Logic Count | Flags | Compliance |
|---|---|---|---|
| 🛡️ AWS Inspector Lambda Code Scanning is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS Inspector Lambda Standard Scanning is not enabled🟢 | 1 | 🟢 x6 | no data |