For those of you who do cyber work in the U.S. Department of Defense (DoD) arena, the Defense Information Systems Agency (DISA) has released a series of new Service Product packages to assist in the Risk Management Framework (RMF) process.
Each Service Product package contains Control Correlation Identifiers (CCI), to assist users in breaking down high-level policy framework requirements and associated them with low-level security settings to determine compliance with the objectives of specific Security Controls. If that sounds like another language to you, chances are you can safely ignore this new resource. If you're working on RMF packages and you're familiar with CCIs, you won't want to pass this one up.
For more information about Service Product packages, visit DISA’s Risk Management Framework customer portal (Common Access Card required).
No comments:
Post a Comment