U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

NIST SP 800-137

Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations

Date Published: September 2011

Author(s)

Kelley Dempsey (NIST), Nirali Chawla (PwC), L. Johnson (NIST), Ronald Johnston (DoD), Alicia Jones (BAH), Angela Orebaugh (BAH), Matthew Scholl (NIST), Kevin Stine (NIST)

Abstract

Keywords

Continuous monitoring; ISCM; information security; security; risk management
Control Families

Audit and Accountability; Assessment, Authorization and Monitoring; Configuration Management; Planning; Program Management; Risk Assessment

Documentation

Publication:
https://doi.org/10.6028/NIST.SP.800-137
Download URL

Supplemental Material:
Press Release

Other Parts of this Publication:
SP 800-137A

Related NIST Publications:
CSWP 3

Document History:
09/30/11: SP 800-137 (Final)