Operations and Maintenance Phase

In this phase, configuration management continues with monitoring for configuration changes and establishing a change control process.

Continuous Monitoring maintains a constant vigil on some of the most critical components of information security and feeds the results back to the appropriate process: incident handling, change control, patch management, and more.

sundial

Any changes to controls or process must be documented in these key areas (among others):

I/AM
SSP
RA
CM
Security Assessment Report (SAR)

Share and Enjoy:

Digg
StumbleUpon
Facebook
Twitter
Google Bookmarks
Add to favorites
RSS

Categories: SDLC Framework
Tags: Continuous Monitoring, NIST Computer Security, operations and maintenance phase, SDLC Framework

By Omar Fink on September 8th, 2008

You must be logged in to post a comment.

HackingTheUniverse

Operations and Maintenance Phase

Leave a Reply

Solve the puzzle

Random Quote

Links We Like:

InfoSec

Singularity