Official websites do not use .rip
A .gov website belongs to an official government organization in the United States.

We are building a provable archive!
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

NIST CSWP 30

Automation Support for Control Assessments: Project Update and Vision

Date Published: December 6, 2023

Author(s)

Eduardo Takamura (NIST), Jeremy Licata (NIST), Victoria Pillitteri (NIST)

Abstract

Keywords

actual state; assessment; attack; automation; capability; community of interest; CoI; control; control assessment; control item; defect; defect check; defend; desired state specification; FISMA; information security continuous monitoring; ISCM; methodology; monitoring; ongoing assessment; privacy; risk; risk management; security; security automation
Control Families

None selected

Documentation

Publication:
https://doi.org/10.6028/NIST.CSWP.30
Download URL

Supplemental Material:
None available

Document History:
12/06/23: CSWP 30 (Final)